Vrack Egress #68

New issue

Open

opened 2020-11-30 16:30:15 +00:00 by rafael · 2 comments

rafael commented 2020-11-30 16:30:15 +00:00 (Migrated from gitlab.privaz.io)

Copy link

thin control or firewall destinations while installing packages is a very complex tasks.

In particular when repository packages use CDNs, etc.

Perhaps it would be best to limit the access to certain applications of users of the system. for example the package manager or user under which the package manager runs.

The package managers has lower risks of wide internet access because it will mainly download packages and will check their signatures.

thin control or firewall destinations while installing packages is a very complex tasks. In particular when repository packages use CDNs, etc. Perhaps it would be best to limit the access to certain applications of users of the system. for example the package manager or user under which the package manager runs. The package managers has lower risks of wide internet access because it will mainly download packages and will check their signatures.

rafael commented 2020-11-30 17:35:34 +00:00 (Migrated from gitlab.privaz.io)

Copy link

It is possible to limit by several process parameters:

• process name
• owner name
• owner uid

https://www.frozentux.net/iptables-tutorial/iptables-tutorial.html#OWNERMATCH

It is possible to limit by several process parameters: - process name - owner name - owner uid https://www.frozentux.net/iptables-tutorial/iptables-tutorial.html#OWNERMATCH

rafael commented 2020-11-30 17:42:52 +00:00 (Migrated from gitlab.privaz.io)

Copy link

mentioned in issue #69

mentioned in issue #69

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

edge-v2

stable-v2

master

feature-edge-acs-1.15.1

fix-edge-88

edge-v1

feature-edge-77b

fix-edge-79

fix-ubuntu-edge-79

fix-ubuntu-edge-73

stable-v1

feature-acs-ubuntu-edge

fix-issue-48

v2.2.10

v2.2.9

v2.2.8

v2.2.7

v2.2.6

v2.2.5

v2.2.4

v2.2.3

v2.2.2

v2.2.1

v2.1.5

v2.1.4

v2.1.3

v2.1.2

v2.1.1

v2.0.28

v2.0.27

v2.0.26

v2.0.25

v2.0.24

v2.0.23

v2.0.22

v2.0.21

v2.0.20

v2.0.19

v2.0.18

v2.0.17

v2.0.16

v2.0.15

v2.0.14

v2.0.13

v2.0.12

v2.0.11

v2.0.10

v2.0.9

v2.0.8

v2.0.7

v2.0.6

v2.0.5

v2.0.4

v2.0.3

v2.0.2

v1.0.56

v2.0.1

v1.0.55

v1.0.54

v1.0.53

v1.0.52

v1.0.51

v1.0.50

v1.0.49

v1.0.48

v1.0.47

v1.0.46

v1.0.45

v1.0.44

v1.0.43

v1.0.42

v1.0.41

v1.0.40

v1.0.39

v1.0.38

v1.0.37

v1.0.36

v1.0.35

v1.0.34

v1.0.33

v1.0.32

v1.0.31

v1.0.30

v1.0.29

v1.0.28

v1.0.27

v1.0.26

v1.0.25

v1.0.24

v1.0.23

v1.0.22

v1.0.21

v1.0.20

v1.0.19

v1.0.18

v1.0.17

v1.0.16

v1.0.15

v1.0.14

v1.0.13

v1.0.12

v1.0.11

v1.0.10

v1.0.9

v1.0.8

v1.0.7

v1.0.6

v1.0.5

v1.0.4

v1.0.3

v1.0.2

v1.0.1

Labels

Clear labels   

ACS 4.15

  

Doing

  

Regression

  

To Do

  

critical

This issue implies blocking progress

  

enhancement

New feature

  

major

This issue implies a major release

  

minor

This issue implies a minor release

  

operations

  

patch

this issue implies a patch release

No labels

ACS 4.15

Doing

Regression

To Do

critical

enhancement

major

minor

operations

patch

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

privazio/ansible-collection-vdc#68

No description provided.