On Feb 6 2008 12:30, Justin McCann wrote: > >I'd like to use libnetfilter_conntrack to track connections per UID >and/or by PID, but AFAICT the nfnetlink conntrack messages don't >include the user id, process id, or inode (useful for >cross-referencing). I noticed that the nfnetlink_log messages have >the uid, but I don't think I want to invoke the filtering & logging >subsystem just to track connection changes. You are facing the same issues as xt_socket (currently, and unfortunately, still named xt_owner) - in that sockets do not necessarily have an owner, much less exactly one associated PID. Just be aware of that. - To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html