Hi all, I would like to know what a good approach might be to prevent packet sniffing on a local node from being able to see the network traffic related to an application.
Would iptables (secmark/connsecmark) do the trick to prevent tools like tcpdump from being able to see these packets? Are there alternative approaches that would be better for handling this? Thanks in advance! Mark Steele CISSP, GPEN, GCIA, CSM [email protected] LinkedIn: https://ca.linkedin.com/in/markrsteele Github: https://github.com/marksteele Personal: http://www.control-alt-del.org
_______________________________________________ Selinux mailing list [email protected] To unsubscribe, send email to [email protected]. To get help, send an email containing "help" to [email protected].
