On 10 May 2001 18:10:43 -0700, Mike Fedyk wrote: > Ahh, but now we are talking about a non-transparent setup. I want something > where it will work with any TCP/IP device without any setup besides setting > IP and routing. > > I'd like to see something that can identify which user is using each > connection, and not need anything more than an identd. This would enable > access for that ip/port as needed at layer 3/4. I'm not aware of one, but it shouldn't be too hard to write a program that would watch for outgoing connections via netlink (Linux) or some such device and request ident information about that user before deciding to allow or deny the request. One might exist.
