Page 2 of 2 FirstFirst 12
Results 11 to 13 of 13

Thread: UFW isn't blocking?

  1. #11
    Join Date
    Nov 2006
    Beans
    579

    Re: UFW isn't blocking?

    Quote Originally Posted by CharlesA View Post
    The firewalls in Linux don't operate the same as the ones in Windows (where if a new app tries to access the internet/networking, you are notified).

    As far as I know, you can't block a specific application from accessing the internet, but I think you can limit what it can do by using AppArmor.
    I wouldn't want it to warn me like most windows.
    I don't care about notification. I'm not sure if you read all the posts, but there's a tutorial I posted the link that shows how to block per application.

  2. #12
    Join Date
    Oct 2009
    Beans
    Hidden!
    Distro
    Ubuntu 22.04 Jammy Jellyfish

    Re: UFW isn't blocking?

    Quote Originally Posted by bone2006 View Post
    I wouldn't want it to warn me like most windows.
    I don't care about notification. I'm not sure if you read all the posts, but there's a tutorial I posted the link that shows how to block per application.
    Thanks for the link.
    Come to #ubuntuforums! We have cookies! | Basic Ubuntu Security Guide

    Tomorrow's an illusion and yesterday's a dream, today is a solution...

  3. #13
    Join Date
    Apr 2006
    Location
    Montana
    Beans
    Hidden!
    Distro
    Kubuntu Development Release

    Re: UFW isn't blocking?

    Quote Originally Posted by bone2006 View Post
    I know there's a tutorial here for allowing per application using iptables. This pretty much does what I'm looking for, it would just be nice to have an easy command line way of allowing or denying applications and not ports for outgoing
    http://ubuntuforums.org/showthread.php?t=1188099

    I didn't know much about apparmor, but found out quickly it's more of a sandbox type of protection. Really happy to learn more about it.
    That is an old thread, it would work, but apparmor is better (more secure).

    Restricting per application is a very windows centric perspective, if there is a host or destination you wish to block, blacklist it, via iptables or /etc/hosts.deny or what have you.

    If you want to know what an application is doing, use wireshark or strace.

    Or relax and enjoy Linux. There is no known spyware in Linux.
    There are two mistakes one can make along the road to truth...not going all the way, and not starting.
    --Prince Gautama Siddharta

    #ubuntuforums web interface

Page 2 of 2 FirstFirst 12

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •