Hi all,
I would like to know what a good approach might be to prevent packet sniffing on a local node from being able to see the network traffic related to an application.
Would iptables (secmark/connsecmark) do the trick to prevent tools like tcpdump from being able to see these packets? Are there alternative approaches that would be better for handling this?
Thanks in advance!
Mark Steele
CISSP, GPEN, GCIA, CSM
LinkedIn: https://ca.linkedin.com/in/markrsteele
Github: https://github.com/marksteele
Personal: http://www.control-alt-del.org
_______________________________________________ Selinux mailing list Selinux@xxxxxxxxxxxxx To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
