diff options
| author | FreeArtMan <dos21h@gmail.com> | 2016-03-08 21:11:16 +0000 |
|---|---|---|
| committer | FreeArtMan <dos21h@gmail.com> | 2016-03-08 21:11:16 +0000 |
| commit | 340d127c403989bbf3ccb82c852f69a626fb27b9 (patch) | |
| tree | dc6d662a28be3a8d80693f7ca711fb7fb136564e /md | |
| parent | 7395159abad36a6429a802643e19789f407a96e0 (diff) | |
| download | md-content-340d127c403989bbf3ccb82c852f69a626fb27b9.tar.gz md-content-340d127c403989bbf3ccb82c852f69a626fb27b9.zip | |
[USING IPTABLES] added command to block by user ip
Diffstat (limited to 'md')
| -rw-r--r-- | md/writeup/using_iptables.md | 12 |
1 files changed, 11 insertions, 1 deletions
diff --git a/md/writeup/using_iptables.md b/md/writeup/using_iptables.md index 8b38488..7f915b5 100644 --- a/md/writeup/using_iptables.md +++ b/md/writeup/using_iptables.md @@ -228,6 +228,14 @@ Block ip to access specific port iptables -A INPUT -s 8.8.8.8 -p tcp --destination-port 25 -j DROP ``` +### Block UID + +There is possble to make iptables basing on user id + +``` +iptables -A OUTPUT -m owner --uid-owner {USERNAME} -j DROP +``` + ### Loging Log droppend packages @@ -259,4 +267,6 @@ the system admins could be not happy with this jokes ;]. 9. https://www.debuntu.org/how-to-redirecting-network-traffic-to-a-new-ip-using-iptables/ 10. http://www.cyberciti.biz/faq/how-to-save-restore-iptables-firewall-config-ubuntu/ 11. http://ipset.netfilter.org/iptables.man.html -12. http://gr8idea.info/os/tutorials/security/iptables5.html
\ No newline at end of file +12. http://gr8idea.info/os/tutorials/security/iptables5.html +13. http://linuxpoison.blogspot.co.uk/2010/11/how-to-limit-network-access-by-user.html +14. http://www.cyberciti.biz/tips/block-outgoing-network-access-for-a-single-user-from-my-server-using-iptables.html
\ No newline at end of file |