Quoting marcin <[EMAIL PROTECTED]>: > Hi > > I'm wondering if there is a tool under Linux which I can used to control > other programs. For instance I want to control network connections > making by some program (by "control" I mean logging or blocking). I know > that I can use (for example) > > #strace program > > and then I can watch when the program using sockets or whatever but it > would be nice to have such a program which is blocking connections to > the Internet by running > > #block-inet program > > and the program wouldn't have access outside the box. > > (I know that something similar is under GNU Hurd > http://kerneltrap.org/node/4484) > > Is it possible under Linux? > > Thanks, > Marcin > > > ------------------------------------------------------------------- > Chcesz pracowac w INTERIA.PL? > Zobacz: >> http://link.interia.pl/f1855 << > > > -- > gentoo-user@gentoo.org mailing list > >
I have not looked deeply into this, but I know for a fact that you can restrict network access to programs based on UID/GIDs with grsecurity. -- gentoo-user@gentoo.org mailing list