obmedzenie stahovania

[Petr Novotny]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 12 Oct 2000, at 16:08, Miroslav PRAGL wrote:

> > Problem je technicky: Jak poznate "browsici paket" z povoleneho
> > zdroje (squid, patchovany lynx s pocitanim downloadu apod.) od
> > "browsiciho paketu" z nepovoleneho zdroje? [Mozna to jde technicky
> > resit bez patchovani kernelu: jestli nekdo vite jak, dejte vedet.]
> 
> pokud je to na localhostu tak vim, na kterem portu sedi jaky
> proces(=user), ne?!

To je fakt - ovsem ted tohle jste prelozte do jazyka ipchains :-) 
Nebo uz iptables umeji neco timto smerem (routovani paketu podle 
uid zdrojoveho portu)? Pak totiz staci browseni jinych uzivatelu nez 
roota a nobody (nebo pod cim to squid pobezi) zakazat packet 
filterem, nebo nullroutovat.

-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5.2 -- QDPGP 2.61a
Comment: http://community.wow.net/grt/qdpgp.html

iQA/AwUBOeW6blMwP8g7qbw/EQLRLQCeLiH7l8vqAUwMeyDeXCTW/dRDRk8AoOlG
D9Qte7vd36HZ9xyoqNyIhvh3
=45bO
-----END PGP SIGNATURE-----
--
Petr Novotny, ANTEK CS
Petr.Novotny na antek.cz
http://www.antek.cz
PGP key ID: 0x3BA9BC3F
-- Don't you know there ain't no devil there's just God when he's drunk.
                                                             [Tom Waits]