[lug] Expertise needed...[ Linux Slant ]
John Hernandez
John.Hernandez at noaa.gov
Fri Mar 21 10:11:02 MST 2003
On Thursday 20 March 2003 03:51 pm, The Matt wrote:
>
> I guess I'm spoiled by "ps aux" on Linux.
>
Maybe it was a kernel module (or the Windows equivalent). On Linux, ps won't
tell you anything about the state of the linux firewall (iptables or
ipchains) for that same reason.
This leads to another question. Does Linux have any facility to block network
traffic on a "per executable" basis? Is there a reasonable way to do this
and make it relatively tamper-proof? For example, I can envision a rule that
limits the network access of executables residing in the /home, /var, and
/tmp areas.
--
| John Hernandez - NOAA Boulder NOC - 303-497-6392
| Mailstop R/OM62. 325 Broadway, Boulder, CO 80305
| PGP Public Key ID: 586A7E23
More information about the LUG
mailing list