Leopard flower looks like exactly what I want. Too bad it is an abandoned project. Does anybody know of a similar firewall that is still developed?
Mange Takk On Fri, Jul 18, 2014 at 5:50 PM, Richard Owlett <rowl...@cloud85.net> wrote: > I know I'm linking to an old thread > (http://lists.pdxlinux.org/pipermail/plug/2014-January/079167.html). > I may have read enough and thought enough in the mean time to ask > "intelligent" questions ;) > > > Russell Senior wrote: > >>>>>> "Richard" == Richard Owlett <rowl...@cloud85.net> writes: > > > > Richard> What I want should be simple, block *EVERYTHING* except > > Richard> email, newsgroup, and browsing with SeaMonkey or it's Debian > > Richard> blessed counterpart. There will be occasional downloads fro > > Richard> Debian repositories. > > > > Firewalls can't (generally) tell what application you are using. All > > they really see is your network source/destination addresses and ports > > and such. > > > > Is the usb modem connected directly to your laptop? > > > > What is the name of the interface when you are connected? Maybe ppp0 > > or usbnet0 or something? I haven't dealt with dialup in a while ;-). > > > > Also, just to be clear, are you trying to block connections your > > laptop is making to the world? Or just connections coming from the > > world to your laptop? > > > > > > I have two use cases: > At home dialup via USB modem (can find interface name later) > At local library via WiFi hotspot (network name known) > (Physically never have an Ethernet connection) > > I understand that I can block *ALL* unsolicited incoming > connections with iptables. > > Under Windows apps such as Comodo can label an app as "trusted". > I know that isn't simple with Linux. > > I understand that the first pass would be to set User/Group > permissions so only specific users (e.g. UserAlpha) can access > the internet. > > However can I set permissions such that UserAlpha has to use a > specific browser. > > For example I'll have two browsers on my machine: > BrowserA is known safe. > BrowserB is experimental and has some feature convenient for > local files. > > Everyone *EXCEPT* UserA should have access to BrowserB. Clear? > > TIA > > > _______________________________________________ > PLUG mailing list > PLUG@lists.pdxlinux.org > http://lists.pdxlinux.org/mailman/listinfo/plug > -- Free Geek Seattle- Helping The Needy Get Nerdy http://www.freegeekseattle.org/ https://groups.google.com/group/freegeek-seattle/topics?hl=en _______________________________________________ PLUG mailing list PLUG@lists.pdxlinux.org http://lists.pdxlinux.org/mailman/listinfo/plug
