Jan Engelhardt wrote:
On Monday 2010-06-21 22:51, Beluc wrote:
no idea ? maybe i didn't explain very well :/
i saw that when using LOG target in OUTPUT policy, there is the user's uid who
send packet.
That is not the user's uid, but the uid of the socket's creator.
Filtering based on UID is best done using the owner match. nfnetlink_queue
currently doesn't supply the UID/GID, but it could be added easily.
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
