On 02/28/2018 04:22 PM, taii...@gmx.com wrote:
Is there a windows style application layer firewall?
I'm not aware of one.I know that iptables can filter based on a process owner and cgroup. So, depending on how the applications are running, you might be able to come close to what you're after.
I think I've seen a few firewall packages / solutions over the years that run a client on workstations that publish state on a central firewall, which will then filter flows based on their (lack of) registration state. - I've never messed with anything like this.
I get that it doesn't stop truly malicious programs but I am simply wanting to stop random programs doing connections without my consent which due to the lennart potterings's of the world now are not just a windows freeware problem.
I think for now, you have to block everything by default and explicitly allow what you want through. Or use something like a SOCKS server that can do some different types of filtering than can be done with iptables.
-- Grant. . . . unix || die
smime.p7s
Description: S/MIME Cryptographic Signature
