could you add this feature or discuss it at 13.04 Developer Summit?
Hi. I'm new to Ubuntu and like it very much. Overall I like Ubuntu better than what I used to use, Windows. But one thing that I really miss from Windows is the ability to know what applications and services are connecting to the internet. In Windows I could log this kind of information. But I've asked some very knowledgeable computer people for help with Ubuntu and I'm told this can't be done on ubuntu. I was hoping that Ubuntu developers might address this shortcoming at the summit? I was told this is where these kind of things are discussed. I'd like to be able to log what applications services are connecting to the internet when I use Ubuntu. This is the feature I would like to have in ubuntu. Much Thanks. -- Ubuntu-devel-discuss mailing list Ubuntu-devel-discuss@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel-discuss
Re: could you add this feature or discuss it at 13.04 Developer Summit?
Aloha, In what kind of context are you looking for this information? Do you have an example tool or screenshot you can provide? It's relatively straight forward to find out what is currently listening to ports, there are two utilities that have been around a while, netstat and ss. You're better off using the latter as netstat is reaching obsolescent, but you may occasionally find yourself stumbling across boxes without ss. To get a list of both active connections and listening services, try ss -plan. You'll get lines like the following back (IP addresses changed for security reasons): LISTEN 0 50 *:3306 *:* users:((mysqld,1384,13)) ESTAB 0 0192.168.0.2:55366 192.168.0.3:143 users:((thunderbird,4152,52)) The first line, LISTEN, tells you the machine I ran the command on is listening for connections on port 3306, which happens to be the port MySQL server uses. The final column gives you the name of the program that is related to that connection, which in this case confirms it's mysqld. The second line ESTAB tells you there is an established connection from the machine 192.168.0.2 (local address on the machine) to a remote server on 192.168.0.3, port 143 (IMAP). The final column tells you it's thunderbird running on the machine. By the way, if you're looking to quickly translate ports to services, check /etc/services. It's not an exhaustive list but most of the standard ones are in there: grep 3306 /etc/services mysql3306/tcp mysql3306/udp Hope this helps in some way, Paul On 10/15/2012 07:25 AM, Brian labishi wrote: Hi. I'm new to Ubuntu and like it very much. Overall I like Ubuntu better than what I used to use, Windows. But one thing that I really miss from Windows is the ability to know what applications and services are connecting to the internet. In Windows I could log this kind of information. But I've asked some very knowledgeable computer people for help with Ubuntu and I'm told this can't be done on ubuntu. I was hoping that Ubuntu developers might address this shortcoming at the summit? I was told this is where these kind of things are discussed. I'd like to be able to log what applications services are connecting to the internet when I use Ubuntu. This is the feature I would like to have in ubuntu. Much Thanks. -- Ubuntu-devel-discuss mailing list Ubuntu-devel-discuss@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel-discuss
RE: could you add this feature or discuss it at 13.04 Developer Summit?
Yeah, I have been exposed to these programs by friends more knowledgable than me. They do show the connections but I find this inadequate because they don't log it. If some application or service connects and then disconnects, I'll only learn of it if I happen to be watching at that time. Lots of things can connect and disconnect when I'm not watching. Plus if I block outbound connections using the ubuntu-firewall and an application or service wants to use an unorthodox port for something I'll only learn of this if I happen to be watching the terminal at that time. There are times I may want to open that port to allow the connection. other times I may want to keep the port closed. But I have no way of knowing unless I happen to be watching the terminal at the time of it happening. I do feel the current options are inadequate, so I was hoping this might get discussed at the Summit. Thank you for telling me about these applications though. I enjoy learning all these new things in ubuntu. Date: Mon, 15 Oct 2012 07:37:08 -1000 From: p...@paulgraydon.co.uk To: ubuntu-devel-discuss@lists.ubuntu.com Subject: Re: could you add this feature or discuss it at 13.04 Developer Summit? Aloha, In what kind of context are you looking for this information? Do you have an example tool or screenshot you can provide? It's relatively straight forward to find out what is currently listening to ports, there are two utilities that have been around a while, netstat and ss. You're better off using the latter as netstat is reaching obsolescent, but you may occasionally find yourself stumbling across boxes without ss. To get a list of both active connections and listening services, try ss -plan. You'll get lines like the following back (IP addresses changed for security reasons): LISTEN 0 50 *:3306 *:* users:((mysqld,1384,13)) ESTAB 0 0192.168.0.2:55366 192.168.0.3:143users:((thunderbird,4152,52)) The first line, LISTEN, tells you the machine I ran the command on is listening for connections on port 3306, which happens to be the port MySQL server uses. The final column gives you the name of the program that is related to that connection, which in this case confirms it's mysqld. The second line ESTAB tells you there is an established connection from the machine 192.168.0.2 (local address on the machine) to a remote server on 192.168.0.3, port 143 (IMAP). The final column tells you it's thunderbird running on the machine. By the way, if you're looking to quickly translate ports to services, check /etc/services. It's not an exhaustive list but most of the standard ones are in there: grep 3306 /etc/services mysql3306/tcp mysql3306/udp Hope this helps in some way, Paul On 10/15/2012 07:25 AM, Brian labishi wrote: Hi. I'm new to Ubuntu and like it very much. Overall I like Ubuntu better than what I used to use, Windows. But one thing that I really miss from Windows is the ability to know what applications and services are connecting to the internet. In Windows I could log this kind of information. But I've asked some very knowledgeable computer people for help with Ubuntu and I'm told this can't be done on ubuntu. I was hoping that Ubuntu developers might address this shortcoming at the summit? I was told this is where these kind of things are discussed. I'd like to be able to log what applications services are connecting to the internet when I use Ubuntu. This is the feature I would like to have in ubuntu. Much Thanks. -- Ubuntu-devel-discuss mailing list Ubuntu-devel-discuss@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel-discuss -- Ubuntu-devel-discuss mailing list Ubuntu-devel-discuss@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel-discuss
Re: could you add this feature or discuss it at 13.04 Developer Summit?
I guess a relevant tool would be AppArmor. I'm not an expert of it, though. -- Ubuntu-devel-discuss mailing list Ubuntu-devel-discuss@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel-discuss
RE: could you add this feature or discuss it at 13.04 Developer Summit?
AppArmor concept was very neat. I have spent some time with it but found it difficult to use because I am not smart enough with computer programming. I guess the problem is specific to less sophisticated users like myself. But I think it is very neat that ubuntu is using AppArmor. From: damage3...@gmail.com Date: Mon, 15 Oct 2012 13:20:43 -0500 Subject: Re: could you add this feature or discuss it at 13.04 Developer Summit? To: ubuntu-devel-discuss@lists.ubuntu.com I guess a relevant tool would be AppArmor. I'm not an expert of it, though. -- Ubuntu-devel-discuss mailing list Ubuntu-devel-discuss@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel-discuss -- Ubuntu-devel-discuss mailing list Ubuntu-devel-discuss@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel-discuss
Re: could you add this feature or discuss it at 13.04 Developer Summit?
Hello Brian, I'm curious at knowing which app did you used on Windows to log that kind of information? Maybe that knowing it will make it more clear what features you do want. Regards, Nicolas 2012/10/15 Brian labishi bni1...@live.com AppArmor concept was very neat. I have spent some time with it but found it difficult to use because I am not smart enough with computer programming. I guess the problem is specific to less sophisticated users like myself. But I think it is very neat that ubuntu is using AppArmor. From: damage3...@gmail.com Date: Mon, 15 Oct 2012 13:20:43 -0500 Subject: Re: could you add this feature or discuss it at 13.04 Developer Summit? To: ubuntu-devel-discuss@lists.ubuntu.com I guess a relevant tool would be AppArmor. I'm not an expert of it, though. -- Ubuntu-devel-discuss mailing list Ubuntu-devel-discuss@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel-discuss -- Ubuntu-devel-discuss mailing list Ubuntu-devel-discuss@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel-discuss -- Nicolas MICHEL -- Ubuntu-devel-discuss mailing list Ubuntu-devel-discuss@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel-discuss
Re: could you add this feature or discuss it at 13.04 Developer Summit?
Brian, I just searched on google with these keywords : linux how to log network traffic and found some really helpfull documentation. Of course it will need some effort from you to make it working since these kind of information are not really user-friendly by themselves and end-users usually don't want to do it! I can recommand you ntop which is a graphical website that gives you stats and every single network transaction details if you want to: http://www.ntop.org/products/ntop/ On stackoverflow ( http://stackoverflow.com/questions/199432/i-need-a-tool-to-log-linux-network-traffic-by-ip-address), some guys are recommanding iptraf (http://iptraf.seul.org/) and EtherApe ( http://etherape.sourceforge.net/). I don't know them. You should try one of these solutions first. Then if it still don't make you happy, come back here and tells us why ;) If you are happy with one of them, please gives us a feedback. It's always good to know what's working well ;) Nicolas 2012/10/15 Nicolas Michel be.nicolas.mic...@gmail.com Hello Brian, I'm curious at knowing which app did you used on Windows to log that kind of information? Maybe that knowing it will make it more clear what features you do want. Regards, Nicolas 2012/10/15 Brian labishi bni1...@live.com AppArmor concept was very neat. I have spent some time with it but found it difficult to use because I am not smart enough with computer programming. I guess the problem is specific to less sophisticated users like myself. But I think it is very neat that ubuntu is using AppArmor. From: damage3...@gmail.com Date: Mon, 15 Oct 2012 13:20:43 -0500 Subject: Re: could you add this feature or discuss it at 13.04 Developer Summit? To: ubuntu-devel-discuss@lists.ubuntu.com I guess a relevant tool would be AppArmor. I'm not an expert of it, though. -- Ubuntu-devel-discuss mailing list Ubuntu-devel-discuss@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel-discuss -- Ubuntu-devel-discuss mailing list Ubuntu-devel-discuss@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel-discuss -- Nicolas MICHEL -- Nicolas MICHEL -- Ubuntu-devel-discuss mailing list Ubuntu-devel-discuss@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel-discuss
Re: could you add this feature or discuss it at 13.04 Developer Summit?
On 12-10-15 02:30 PM, Nicolas Michel wrote: Hello Brian, I'm curious at knowing which app did you used on Windows to log that kind of information? Maybe that knowing it will make it more clear what features you do want. This is just speculation, but a *long* time ago when I was a Windows user, I used a program called ZoneAlarm that was an application-level firewall that would prompt the user for permission for every single application that attempted to connect to the internet. I'm not aware of anything similar for Linux (but that doesn't mean it doesn't exist; I haven't looked) -- Ubuntu-devel-discuss mailing list Ubuntu-devel-discuss@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel-discuss