jtanium at gmail.com
Wed Jan 23 08:46:25 MST 2008
I don't know of anything exactly like those...
Firestarter (http://www.fs-security.com/) would be something you could
use to manage iptables. It won't show you an application and let you
make a policy based on that application, but you could figure out what
ports an application is using and and make policies based on that.
As far limiting executables launching other executables, you should be
able to do it with SELinux or AppArmor, though I don't know what tools
there are make that easier to manage.
On Jan 22, 2008 11:21 PM, Chris Carey <chris.carey at gmail.com> wrote:
> I really enjoy the added granularity in network security provided by
> (Sunbelt) Kerio Personal Firewall or Comodo Personal Firewall in
> Windows world.
> Specifically, mandating the ability for any executable to access
> network resources. Also, the monitoring and control of whether
> executables can launch other executables.
> Are there any applications like this in Linux/MacOSX? Seems it would
> require something kernel level.
> PLUG: http://plug.org, #utah on irc.freenode.net
> Unsubscribe: http://plug.org/mailman/options/plug
> Don't fear the penguin.
More information about the PLUG