[grsec] Connect statement in policy.
Brad Spengler
spender at grsecurity.net
Thu Feb 24 10:48:02 EST 2005
I've added hostname support to the policy file. You can now have rules
like:
connect www.google.com:80 stream tcp
connect bucknell.edu/24:80 stream tcp
bind localhost:22 stream tcp
It also works for the role_allow_ip statement:
role_allow_ip internal.host
If a host resolves to several IPs, they will all be included in the
policy.
Let me know if you have any problems with it.
-Brad
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://grsecurity.net/pipermail/grsecurity/attachments/20050224/ced53039/attachment.pgp
More information about the grsecurity
mailing list