Date: Sun, 4 Apr 1999 00:17:48 -0600 (CST) From: Kevin Day <toasty@home.dragondata.com> To: green@unixhelp.org (Brian Feldman) Cc: hackers@FreeBSD.ORG Subject: Re: ipfw uid Message-ID: <199904040617.AAA19930@home.dragondata.com> In-Reply-To: <Pine.BSF.4.05.9904032202460.14820-100000@janus.syracuse.net> from Brian Feldman at "Apr 3, 1999 10: 8:49 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
> Is anyone interested in trying out my addition of per-uid firewalling > capabilities to ipfw? I just did them today, but they seem to work fine. > For instance, logging/accounting purpouses: > > {"/usr/src/sbin/ipfw"}# ipfw show > 00050 8157 2864127 count ip from any to any uid 1000 in > 00060 8952 1834453 count ip from any to any uid 1000 out > > Just let me know if you'd like it! > If I'm understanding this correctly, could this be used to prevent all but one or two users from using a certain IP? (Yes, i realize they could still try to bind to it, but it wouldn't do them any good). I was thinking about doing some kind of file per IP in /proc, that could be chmod'ed to allow/disallow users from doing things with, but this sounds much more elegant. :) Kevin To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199904040617.AAA19930>