On Tue, 2009-05-05 at 07:15 -0700, Prasun Dhara wrote:
I think i need to explain little more about the problem/situation..
Please note i am talking about desktop PC which will be used only by one user (say me).
I want a tool which will alert me(may be by opening a popup window) if some program tries to open a port(it may be a incomming or outgoing connection request) and it also prompt me for approval.If i approve(by providing su password) connection should be accepted automatically.
Presently i have the following senarion : 1. whenever i am going to execute some program which needs an open port it is dropped silently. 2. Then I am looking into the log and checking which port the program trying to open 3. Then I need to open the port manually from YAST Firewall 4. Then execute the program again
For a desktop PC/laptop user I belive this is too much effort to run a simple IRC/messanger like program.
I also want alert message 1. if some one from a remote machine tries to connect my computer 2. if some one from a remote machine tries to run a port scanner on my ip
Does any one have any idea on how to do this??..I f anyone need any clarification please tell me i will clarify again if needed.
Thanks Prasun
<SNIP> What you asked for is similar functionality as provided by many MS-Windows based Personal Firewall's E.g., you want everything closed and depending upon the application to open certain port(s). The problem with the current firewall's under U/Linux is that they are based on the previous assumption that you provide services only, so that the ports to use where known in advanced. Now Linux is growing into the consumer realm, this no longer is satisfactory anymore. Simply because consumers must be assumed to be ignorant about the underlying techniques, including technical protocols. So, your question is clear, but I can't answer it at the moment. I never tried it, but maybe AppArmor can? Maybe someone else has a suggestion? Frans. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org