Re: [gentoo-user] Controlling and Monitoring
On 15:25 Tue 22 Feb , Arnstein Oseland wrote: > marcin wrote: > >Hi > > > >I'm wondering if there is a tool under Linux which I can used to control > >other programs. For instance I want to control network connections > >making by some program (by "control" I mean logging or blocking). I know > >that I can use (for example) > > > >#strace program > > > >and then I can watch when the program using sockets or whatever but it > >would be nice to have such a program which is blocking connections to > >the Internet by running > > > >#block-inet program > > Try netbrake: http://www.hping.org/netbrake/ > > Use: > > netbrake --bps 0 --limit-getc program > > -Arnstein Thanks! This is almost what I was looking for, because netbrake only limits connections and I don't want to make connections at all but I can change the program very easily in the way I want it to be. Thanks a lot! Marcin -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Controlling and Monitoring
marcin wrote: Hi I'm wondering if there is a tool under Linux which I can used to control other programs. For instance I want to control network connections making by some program (by "control" I mean logging or blocking). I know that I can use (for example) #strace program and then I can watch when the program using sockets or whatever but it would be nice to have such a program which is blocking connections to the Internet by running #block-inet program Try netbrake: http://www.hping.org/netbrake/ Use: > netbrake --bps 0 --limit-getc program -Arnstein -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Controlling and Monitoring
On 21:53 Mon 14 Feb , Jean-Francois Gagnon Laporte wrote: > On Sun, 13 Feb 2005 01:40:16 +0100, marcin <[EMAIL PROTECTED]> wrote: > > Hi > > > > I'm wondering if there is a tool under Linux which I can used to control > > other programs. For instance I want to control network connections > > making by some program (by "control" I mean logging or blocking). I know > > that I can use (for example) > > > > #strace program > > > > and then I can watch when the program using sockets or whatever but it > > would be nice to have such a program which is blocking connections to > > the Internet by running > > > > #block-inet program > > > > and the program wouldn't have access outside the box. > > > > (I know that something similar is under GNU Hurd > > http://kerneltrap.org/node/4484) > > > > Is it possible under Linux? > > > > Hum yeah TCPd can do that for inetd programs. Also, netfilter/iptables > can do that on a port basis. All you have to do is to know which > program use which port and you're ready to go. You could use fwbuilder > (available in portage) to help you out. Just deny everything and then > enable what you need. > > Hopes this helps > > Jean-Francois > I know that I can deny everything but the whole point is that I want to deny access only some programs. I want to build some kind of sandboxes where I can test some suspicious programs (and I don't want to use emulators like qemu, vmware or even usermode-kernel). I thought that maybe there is a patch against kernel 2.4 or 2.6 but I haven't been able to find it yet. Thanks Marcin -- "Samcze pasorzyty s± od usugiwania kobiecie i wykonywania nie skomplikowanych prac domowych..." >>> http://link.interia.pl/f1856 -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Controlling and Monitoring
On Sun, 13 Feb 2005 01:40:16 +0100, marcin <[EMAIL PROTECTED]> wrote: > Hi > > I'm wondering if there is a tool under Linux which I can used to control > other programs. For instance I want to control network connections > making by some program (by "control" I mean logging or blocking). I know > that I can use (for example) > > #strace program > > and then I can watch when the program using sockets or whatever but it > would be nice to have such a program which is blocking connections to > the Internet by running > > #block-inet program > > and the program wouldn't have access outside the box. > > (I know that something similar is under GNU Hurd > http://kerneltrap.org/node/4484) > > Is it possible under Linux? > Hum yeah TCPd can do that for inetd programs. Also, netfilter/iptables can do that on a port basis. All you have to do is to know which program use which port and you're ready to go. You could use fwbuilder (available in portage) to help you out. Just deny everything and then enable what you need. Hopes this helps Jean-Francois > Thanks, > Marcin > > --- > Chcesz pracowac w INTERIA.PL? > Zobacz: >> http://link.interia.pl/f1855 << > > -- > gentoo-user@gentoo.org mailing list > > -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Controlling and Monitoring
On 19:57 Sat 12 Feb , [EMAIL PROTECTED] wrote: > Quoting marcin <[EMAIL PROTECTED]>: > > > Hi > > > > I'm wondering if there is a tool under Linux which I can used to control > > other programs. For instance I want to control network connections > > making by some program (by "control" I mean logging or blocking). I know > > that I can use (for example) > > > > #strace program > > > > and then I can watch when the program using sockets or whatever but it > > would be nice to have such a program which is blocking connections to > > the Internet by running > > > > #block-inet program > > > > and the program wouldn't have access outside the box. > > > > (I know that something similar is under GNU Hurd > > http://kerneltrap.org/node/4484) > > > > Is it possible under Linux? > > > > Thanks, > > Marcin > > > > > I have not looked deeply into this, but I know for a fact that you can > restrict > network access to programs based on UID/GIDs with grsecurity. > Well, it is not exactly what I was thinking about but I'll definitely try it. Many thanks -- Poznaj swoja przyszlosc... Kliknij >> http://link.interia.pl/f1847 <<< -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Controlling and Monitoring
Quoting marcin <[EMAIL PROTECTED]>: > Hi > > I'm wondering if there is a tool under Linux which I can used to control > other programs. For instance I want to control network connections > making by some program (by "control" I mean logging or blocking). I know > that I can use (for example) > > #strace program > > and then I can watch when the program using sockets or whatever but it > would be nice to have such a program which is blocking connections to > the Internet by running > > #block-inet program > > and the program wouldn't have access outside the box. > > (I know that something similar is under GNU Hurd > http://kerneltrap.org/node/4484) > > Is it possible under Linux? > > Thanks, > Marcin > > > --- > Chcesz pracowac w INTERIA.PL? > Zobacz: >> http://link.interia.pl/f1855 << > > > -- > gentoo-user@gentoo.org mailing list > > I have not looked deeply into this, but I know for a fact that you can restrict network access to programs based on UID/GIDs with grsecurity. -- gentoo-user@gentoo.org mailing list
[gentoo-user] Controlling and Monitoring
Hi I'm wondering if there is a tool under Linux which I can used to control other programs. For instance I want to control network connections making by some program (by "control" I mean logging or blocking). I know that I can use (for example) #strace program and then I can watch when the program using sockets or whatever but it would be nice to have such a program which is blocking connections to the Internet by running #block-inet program and the program wouldn't have access outside the box. (I know that something similar is under GNU Hurd http://kerneltrap.org/node/4484) Is it possible under Linux? Thanks, Marcin --- Chcesz pracowac w INTERIA.PL? Zobacz: >> http://link.interia.pl/f1855 << -- gentoo-user@gentoo.org mailing list