Welcome!
Important information
-- Spectre and Meltdown vulnerabilities
-- Change in MX sources

News
-- MX Linux on social media: here
-- Mepis support still here

Current releases
-- MX-17.1 Final release info here
-- antiX-17 release info here

New users
-- Please read this first, and don't forget to add system and hardware information to posts!
-- Here are the Forum Rules

A per-application Firewall

Post Reply
Message
Author
User avatar
ChrisUK
Forum Regular
Forum Regular
Posts: 226
Joined: Tue Dec 12, 2017 1:04 pm

A per-application Firewall

#1 Post by ChrisUK » Tue Jul 10, 2018 11:16 am

I actually became less enthusiastic about this after typing it all out, but I'll post it anyway ;)

Many Distros have their own tools that make them stand out from the rest... MX has many such tools, Mint had it's Update Manager and Driver Manager etc, Manjaro has...

But one program that no Distro has, seems to have been overlooked... a per-application firewall. Although many here may not see the need for it, many Windows users new to Linux seem to ask about it (usually they ask for a Zonealarm alternative - ufw is adequate for most, but is not as full featured as a Zonealarm-type clone). It used to be possible to limit program access using the group option of iptables, but that option has been removed, so there's no easy way (and certainly no GUI) to restrict a program's access to the Internet. There may be ways using Firejail, Apparmour, or SELinux, but I've found no newbie friendly way

To my knowledge, there have been only three attempts at coding such a program for Linux: Douane - Leopard Flower - and Opensnitch... all are either no longer maintained or unfinished or don't work. So, if someone has the time, there's a gap in the market for coding such a program... and MX could be unique in providing it ;)
Chris

MX 17 - Manjaro

Post Reply

Return to “General”