I don't know of anything exactly like those... Firestarter (http://www.fs-security.com/) would be something you could use to manage iptables. It won't show you an application and let you make a policy based on that application, but you could figure out what ports an application is using and and make policies based on that.
As far limiting executables launching other executables, you should be able to do it with SELinux or AppArmor, though I don't know what tools there are make that easier to manage. Jason On Jan 22, 2008 11:21 PM, Chris Carey <[EMAIL PROTECTED]> wrote: > I really enjoy the added granularity in network security provided by > (Sunbelt) Kerio Personal Firewall or Comodo Personal Firewall in > Windows world. > Specifically, mandating the ability for any executable to access > network resources. Also, the monitoring and control of whether > executables can launch other executables. > Are there any applications like this in Linux/MacOSX? Seems it would > require something kernel level. > > --Chris > > /* > PLUG: http://plug.org, #utah on irc.freenode.net > Unsubscribe: http://plug.org/mailman/options/plug > Don't fear the penguin. > */ > /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
