Date: Sun, 25 Nov 2001 23:17:24 +1100 (EST) From: Ian Smith <smithi@nimnet.asn.au> To: Brett Glass <brett@lariat.org> Cc: Kris Kennaway <kris@obsecurity.org>, freebsd-security@FreeBSD.ORG Subject: Re: Security zone Message-ID: <Pine.BSF.3.96.1011125230455.14871C-100000@gaia.nimnet.asn.au> In-Reply-To: <4.3.2.7.2.20011124162959.04085de0@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 24 Nov 2001, Brett Glass wrote: > At 04:11 PM 11/24/2001, Kris Kennaway wrote: > > >It's basically a lie; you can do all this and more under FreeBSD. > > FreeBSD doesn't have per-application control of ports and sockets, > which is what ZoneAlarm *tries* to provide. It'd be nice to add this > as built-in feature, either in the base OS or in ipfw. Yeah, Windows security 'features' for FreeBSD, just what we lack! :) Can't you do 'per-app' stuff in ipfw with users and/or groups? Frankly I'm more contented relying on having port access control in rc.firewall. Cheers, Ian To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.1011125230455.14871C-100000>