* filtering packets based on the pathname of the sending/receiving application
@ 2004-08-26 17:02 Sonny (Sechang) Son
2004-08-30 18:54 ` Jose Maria Lopez
0 siblings, 1 reply; 4+ messages in thread
From: Sonny (Sechang) Son @ 2004-08-26 17:02 UTC (permalink / raw)
To: netfilter
Hi,
sorry if this has been answered already.
Is there any way to block/allow traffic generated by or toward a spcific
application. I want to block/allow traffics based on the full pathname of
the application.
thank you.
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: filtering packets based on the pathname of the sending/receiving application
2004-08-26 17:02 filtering packets based on the pathname of the sending/receiving application Sonny (Sechang) Son
@ 2004-08-30 18:54 ` Jose Maria Lopez
2004-08-30 22:05 ` Alexander Samad
0 siblings, 1 reply; 4+ messages in thread
From: Jose Maria Lopez @ 2004-08-30 18:54 UTC (permalink / raw)
To: netfilter@lists.netfilter.org
El jue, 26 de 08 de 2004 a las 19:02, Sonny (Sechang) Son escribió:
> Hi,
>
> sorry if this has been answered already.
>
> Is there any way to block/allow traffic generated by or toward a spcific
> application. I want to block/allow traffics based on the full pathname of
> the application.
>
> thank you.
Wouldn't it be easier to study the ports this application use and use
them to generate your rules. I think what you want it's not possible,
you can't discriminate traffic using the path or name of the executable,
but I think you can do it with the user that runs the program, using a
patch from patch-o-matic, I don't know if this can suit you.
--
Jose Maria Lopez Hernandez
Director Tecnico de bgSEC
jkerouac@bgsec.com
bgSEC Seguridad y Consultoria de Sistemas Informaticos
http://www.bgsec.com
ESPAÑA
The only people for me are the mad ones -- the ones who are mad to live,
mad to talk, mad to be saved, desirous of everything at the same time,
the ones who never yawn or say a commonplace thing, but burn, burn, burn
like fabulous yellow Roman candles.
-- Jack Kerouac, "On the Road"
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: filtering packets based on the pathname of the sending/receiving application
2004-08-30 18:54 ` Jose Maria Lopez
@ 2004-08-30 22:05 ` Alexander Samad
2004-08-31 19:52 ` Jose Maria Lopez
0 siblings, 1 reply; 4+ messages in thread
From: Alexander Samad @ 2004-08-30 22:05 UTC (permalink / raw)
To: netfilter
[-- Attachment #1: Type: text/plain, Size: 1405 bytes --]
On Mon, Aug 30, 2004 at 08:54:42PM +0200, Jose Maria Lopez wrote:
> El jue, 26 de 08 de 2004 a las 19:02, Sonny (Sechang) Son escribi??:
> > Hi,
> >
> > sorry if this has been answered already.
> >
> > Is there any way to block/allow traffic generated by or toward a spcific
> > application. I want to block/allow traffics based on the full pathname of
> > the application.
> >
> > thank you.
The is a patch in patch o matic called owner, which lets you specify the
application and matches agains that.
>
> Wouldn't it be easier to study the ports this application use and use
> them to generate your rules. I think what you want it's not possible,
> you can't discriminate traffic using the path or name of the executable,
> but I think you can do it with the user that runs the program, using a
> patch from patch-o-matic, I don't know if this can suit you.
>
> --
> Jose Maria Lopez Hernandez
> Director Tecnico de bgSEC
> jkerouac@bgsec.com
> bgSEC Seguridad y Consultoria de Sistemas Informaticos
> http://www.bgsec.com
> ESPA??A
>
> The only people for me are the mad ones -- the ones who are mad to live,
> mad to talk, mad to be saved, desirous of everything at the same time,
> the ones who never yawn or say a commonplace thing, but burn, burn, burn
> like fabulous yellow Roman candles.
> -- Jack Kerouac, "On the Road"
>
>
>
[-- Attachment #2: Digital signature --]
[-- Type: application/pgp-signature, Size: 189 bytes --]
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: filtering packets based on the pathname of the sending/receiving application
2004-08-30 22:05 ` Alexander Samad
@ 2004-08-31 19:52 ` Jose Maria Lopez
0 siblings, 0 replies; 4+ messages in thread
From: Jose Maria Lopez @ 2004-08-31 19:52 UTC (permalink / raw)
To: netfilter@lists.netfilter.org
El mar, 31 de 08 de 2004 a las 00:05, Alexander Samad escribió:
> On Mon, Aug 30, 2004 at 08:54:42PM +0200, Jose Maria Lopez wrote:
> > El jue, 26 de 08 de 2004 a las 19:02, Sonny (Sechang) Son escribi??:
> > > Hi,
> > >
> > > sorry if this has been answered already.
> > >
> > > Is there any way to block/allow traffic generated by or toward a spcific
> > > application. I want to block/allow traffics based on the full pathname of
> > > the application.
> > >
> > > thank you.
>
> The is a patch in patch o matic called owner, which lets you specify the
> application and matches agains that.
We didn't know. Thanks for the correction.
--
Jose Maria Lopez Hernandez
Director Tecnico de bgSEC
jkerouac@bgsec.com
bgSEC Seguridad y Consultoria de Sistemas Informaticos
http://www.bgsec.com
ESPAÑA
The only people for me are the mad ones -- the ones who are mad to live,
mad to talk, mad to be saved, desirous of everything at the same time,
the ones who never yawn or say a commonplace thing, but burn, burn, burn
like fabulous yellow Roman candles.
-- Jack Kerouac, "On the Road"
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2004-08-31 19:52 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-08-26 17:02 filtering packets based on the pathname of the sending/receiving application Sonny (Sechang) Son
2004-08-30 18:54 ` Jose Maria Lopez
2004-08-30 22:05 ` Alexander Samad
2004-08-31 19:52 ` Jose Maria Lopez
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.