Re: [gentoo-user] Re: Best *SIMPLE* firewall?

2018-03-01 Thread Tom H
On Wed, Feb 28, 2018 at 6:35 PM, Grant Edwards wrote: > On 2018-02-28, taii...@gmx.com wrote: > >> Is there a windows style application layer firewall? > > Can you describe what that means? (For the benefit of those of us that > aren't familiar with

Re: [gentoo-user] Re: Best *SIMPLE* firewall?

2018-03-01 Thread Tom H
On Wed, Feb 28, 2018 at 6:22 PM, taii...@gmx.com wrote: > > Is there a windows style application layer firewall? I get that it doesn't > stop truly malicious programs but I am simply wanting to stop random > programs doing connections without my consent which due to the lennart >

Re: [gentoo-user] Re: Best *SIMPLE* firewall?

2018-03-01 Thread Wols Lists
On 01/03/18 00:26, Rich Freeman wrote: > Like everybody around here I prefer a FOSS implementation, > and would trust it more due to the "many eyes" philosophy, but I'd > stop short of saying that the Windows software firewall is > particularly insecure. Bear in mind that "many eyes" only works

Re: [gentoo-user] Re: Best *SIMPLE* firewall?

2018-02-28 Thread mad.scientist.at.large
All microsoft software is inherently less secure.  You see, like many companies based here in amerika microsoft notifies nsa of bugs and does not patch them or notify anyone else until nsa says so, i.e. not unless/until nsa thinks they don't need the indirect back door "accidentally" included

Re: [gentoo-user] Re: Best *SIMPLE* firewall?

2018-02-28 Thread Rich Freeman
On Wed, Feb 28, 2018 at 6:22 PM, taii...@gmx.com wrote: > Is there a windows style application layer firewall? Windows doesn't have an "application layer firewall" as far as I know. I believe that it does the filtering at the OS level, the same as Linux. Now, it is true that

Re: [gentoo-user] Re: Best *SIMPLE* firewall?

2018-02-28 Thread Grant Taylor
On 02/28/2018 04:47 PM, Grant Taylor wrote: I know that iptables can filter based on a process owner and cgroup. So, depending on how the applications are running, you might be able to come close to what you're after. You might be able to punt (metadata about) packets into a user space

Re: [gentoo-user] Re: Best *SIMPLE* firewall?

2018-02-28 Thread Grant Taylor
On 02/28/2018 04:22 PM, taii...@gmx.com wrote: Is there a windows style application layer firewall? I'm not aware of one. I know that iptables can filter based on a process owner and cgroup. So, depending on how the applications are running, you might be able to come close to what you're

[gentoo-user] Re: Best *SIMPLE* firewall?

2018-02-28 Thread Grant Edwards
On 2018-02-28, taii...@gmx.com wrote: > Is there a windows style application layer firewall? Can you describe what that means? (For the benefit of those of us that aren't familiar with Windows.) -- Grant Edwards grant.b.edwardsYow! Bo Derek ruined

Re: [gentoo-user] Re: Best *SIMPLE* firewall?

2018-02-28 Thread taii...@gmx.com
Is there a windows style application layer firewall? I get that it doesn't stop truly malicious programs but I am simply wanting to stop random programs doing connections without my consent which due to the lennart potterings's of the world now are not just a windows freeware problem.

[gentoo-user] Re: Best *SIMPLE* firewall?

2018-02-28 Thread Ian Zimmerman
On 2018-02-28 13:28, Jorge Almeida wrote: > > Is there something besides iptables? It seems to be like > > systemd/perl/python, continuously expanding its scope. And no, I'm > > not looking for an "easy-peasy front-end gui" that'll probably pull > > in 90% of QT as dependancies. I fondly