Re: how to prevent a user from accessing the inernet from my machine

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Wed, 8 Sep 2004 05:29:04 +0300 (EEST)
alaadin@xxxxxxxxxxx wrote:

> Hello,
> 
> if i have a user on my machine
> 
> and i do not want him to access the internet from my machine ..
> 
> how can this be done ?
> 
> when i do
> 
> [root@Shell iptables-1.2.11]# iptables -A OUTPUT --uid-owner
> his-number-uid -d 0/0 -j DROP
> 
> iptables v1.2.11: Unknown arg `--uid-owner'
> Try `iptables -h' or 'iptables --help' for more information.
> 
> it gives me this error .. ?
> 
> 

Assuming you have the 'owner' module, use

iptables -A OUTPUT -m owner --uid-owner <his_uid> -d 0/0 -j DROP

that should work for you


-- 
    Adam Young	<adam_at_vbfx_dot_com>
    http://www.vbfx.com/
    GPG Key - 5B3375F8
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux