From: Coolm on 28 Jun 2010 12:09 Hello all, Is there any util like iptables + xt_owner to block access to port to given user? Iptables block packets flow. I want to achive effect like this: There will be error if user with id=1000 want bind to port, e.g. netcat -l -p 12345 return error similar to one if we want access to privileged ports. Thanks in advance. -- Best regards, - Matthew Pa�osz [ e-mail: matp dot sa a-t gmail dot com ] [ JID: coolmax(a)jabberpl.org ] [ Pom� ulepszy� usenet: http://twovoyagers.com/improve-usenet.org/ ]
From: Pascal Hambourg on 1 Jul 2010 06:43 Hello, Coolm@x a �crit : > Is there any util like iptables + xt_owner to block access to port to > given user? Iptables block packets flow. I want to achive effect like > this: There will be error if user with id=1000 want bind to port, e.g. > netcat -l -p 12345 return error similar to one if we want access to > privileged ports. Thanks in advance. Iptables is a packet filter and won't do anything if no packet is transmitted. I guess it is possible to use a security framework such as SELinux to control access to the network sockets.
|
Pages: 1 Prev: VPNC connection problems Next: USB Networking and Interconnectivity adapters |