From mboxrd@z Thu Jan 1 00:00:00 1970 From: Patrick McHardy Subject: Re: Application interface Date: Tue, 24 Jun 2003 13:28:55 +0200 Sender: netfilter-devel-admin@lists.netfilter.org Message-ID: <3EF835F7.7090705@trash.net> References: <1056408903.3659.13.camel@skinny.gideonolam.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Cc: netfilter-devel@lists.netfilter.org Return-path: To: gideon olam In-Reply-To: <1056408903.3659.13.camel@skinny.gideonolam.com> Errors-To: netfilter-devel-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Unsubscribe: , List-Archive: List-Id: netfilter-devel.vger.kernel.org Have you looked at the owner match ? Bye Patrick gideon olam wrote: >Is there an interface or mechanism either in place today or planned for >the future which allows for application level control? Meaning instead >of all apps being being allowed to use well known services like http, >limiting access to a subset of applications? > >I'm interested in Linux's ability to provide some of the personal >firewall capabilities seen on windows systems. Specific control of >applications use of the internet becomes important when you are >combating various types of malware be it spyware, trojans, or viruses. >While it's true that malware has been slow to spread to the Linux >platform it is coming, and application controls are an important step >towards prevention and control. > > > >Joe Saland, CISSP >gideon@gideonolam.com > > >