Tor/Iptables Question
Kyle Williams
kyle.kwilliams at gmail.com
Wed Aug 19 23:48:08 UTC 2009
I believe if you just remove --dport, then everything (all ports) are
assumed.
On Wed, Aug 19, 2009 at 1:01 PM, Ringo <2600denver at gmail.com> wrote:
> "I prevent all users other than root from connecting to the Tor Control
> port with an
> > iptables rule which looks like this:
> >
> > iptables -A OUTPUT -o lo -p tcp --dport 9051 -m owner ! --uid-owner
> root -j REJECT"
>
> Thanks! That should work perfectly. Is there any way to make dport a
> wildcard?
>
> Ringo
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20090819/ef70b35d/attachment.htm>
More information about the tor-talk
mailing list