Date: Sun, 4 Apr 1999 00:17:48 -0600 (CST) From: Kevin Day <toasty@home.dragondata.com> To: green@unixhelp.org (Brian Feldman) Cc: hackers@FreeBSD.ORG Subject: Re: ipfw uid Message-ID: <199904040617.AAA19930@home.dragondata.com> In-Reply-To: <Pine.BSF.4.05.9904032202460.14820-100000@janus.syracuse.net> from Brian Feldman at "Apr 3, 1999 10: 8:49 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
> Is anyone interested in trying out my addition of per-uid firewalling
> capabilities to ipfw? I just did them today, but they seem to work fine.
> For instance, logging/accounting purpouses:
>
> {"/usr/src/sbin/ipfw"}# ipfw show
> 00050 8157 2864127 count ip from any to any uid 1000 in
> 00060 8952 1834453 count ip from any to any uid 1000 out
>
> Just let me know if you'd like it!
>
If I'm understanding this correctly, could this be used to prevent all but
one or two users from using a certain IP? (Yes, i realize they could still
try to bind to it, but it wouldn't do them any good).
I was thinking about doing some kind of file per IP in /proc, that could be
chmod'ed to allow/disallow users from doing things with, but this sounds
much more elegant. :)
Kevin
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199904040617.AAA19930>