I only want certain binaries to be allowed network access.
For example, I want to allow the below binaries access to the internet:
/usr/lib64/firefox/firefox
/usr/lib/virtualbox/VirtualBox
/bin/yum (it seems to be done via python like /usr/bin/python /bin/yum
update -- so here obviously python is allowed network access only for
yum ('the binary'). This rule should not give python network access
for any other binaries/.py scripts etc.)
I want no other binary to be able to access the network.
If a binary attempts to access the network there should be a popup, asking me:
a. Deny network access and Remember this Decision if the same binary
attempts to access the network again.
b. Allow network access and Remember this Decision if the same binary
attempts to access the network again.
c. Allow network access this time but Prompt me Again if this binary
tries to access the network.
d. Deny network access this time but Prompt me Again if this binary
tries to access the network.
A Google search turns up this:
https://security.stackexchange.com/questions/15476/configure-linux-to-allow-network-activity-based-on-binary
however the answers posted over there are not easy to understand.
Maybe there is already a way to do this that I don't know of? So I
would appreciate any answers.
Thanks.
--
devel mailing list
devel@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/devel
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
