On Mon, 16 Aug 2010 16:56:32 -0400 Bill Sconce <sco...@in-spec-inc.com> wrote:
> Does anyone know of a way to prevent a Linux account from accessing > the Internet? Wow. Excellent. It looks like iptables may be the ticket. (If my ${very_untrusted_user_UID} is prevented from sending packets out that does exactly the job needed. E.g., a user account which I set up for reading PDFs can't send anything, no matter how perniciously a PDF file has been crafted (and of course assuming that the account is also nonprivileged etc.) then my objective has been met. I'll give iptables a try. It's at just the right level of brute- forceness, and of Linuxness. I love this list. > > Many thanks! Many more thanks! I'll report back on results of testing. I'll_report_back_on_results_of_testing'ly yrs, Bill _______________________________________________ gnhlug-discuss mailing list gnhlug-discuss@mail.gnhlug.org http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss/