Advanced traffic shaping with iptables?
Mike Perry
mikeperry at fscked.org
Wed Oct 3 08:29:44 UTC 2007
Thus spake Marco Bonetti (marco.bonetti at slackware.it):
> On Wed, September 26, 2007 02:41, tor-op at hermetix.org wrote:
> > It looks like the script needs Tor to run on a virtual address.
> > This could be done by adding another address to your default interface
> Yesterday night (CEST) I've modified the script to use only one ip, packet
> matching is done via uid. Unfortunately the uid/gid/pid/ matching is
> broken on smp machines (according to "man iptables"). I'll made it
> avalaible this evening, as soon as I get back home.
Wow, nice work! I didn't see this option. Completely didn't expect it
to exist either.
Actually, my iptables manpage only says that pid, sid and command
matching are broken on SMP. Perhaps UID is actually safe?
--
Mike Perry
Mad Computer Scientist
fscked.org evil labs
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20071003/5dd172a8/attachment.pgp>
More information about the tor-talk
mailing list