Re: Unauthorized connection blocking withing socket

Alan Cox (alan@lxorguk.ukuu.org.uk)
Sun, 13 Jan 2002 01:17:24 +0000 (GMT)


> I am not sure that it is a good idea to mess around sys_connect() or any
> one want to put such restriction on their computer. I don't see amy
> problem for the people who just use applications on their computers
> though. Any suggestion?

Most systems do this by role based security. You might want to have a look
at the LSM patch and the NSA security module, as well perhaps at the RSBAC
security project. The LSM and NSA modules can I suspect not only deal with
connect based cases but a lot more
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/