Date: Mon, 1 Jan 2001 17:24:09 -0600 From: Bill Fumerola <billf@mu.org> To: Anders Nordby <anders@fix.no> Cc: freebsd-net@freebsd.org Subject: Re: ipfw uid rules and matching specific services for bandwidth limiting Message-ID: <20010101172409.I72273@elvis.mu.org> In-Reply-To: <20010101210826.A69852@totem.fix.no>; from anders@fix.no on Mon, Jan 01, 2001 at 09:08:26PM %2B0100 References: <20010101210826.A69852@totem.fix.no>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jan 01, 2001 at 09:08:26PM +0100, Anders Nordby wrote:
> Are people actually using uid type rules heavily? I'm having trouble matching
> the packets generated by programs like Apache and ProFTPD. I believe that may
> be because of root binding the ports these programs use before they setuid() or
> something, I'm not sure. Particularly I have trouble matching the packets of
> active FTP, since I have random ports on both ends to deal with and can't match
> them by port either. Does anyone have a solution to this?
sockstat is your friend, look at the 'user' that is defined per program,
thats who is going to be charged for packets on that socket.
--
Bill Fumerola - security yahoo / Yahoo! inc.
- fumerola@yahoo-inc.com / billf@FreeBSD.org
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010101172409.I72273>