undefined | Better HN

0 pointsheavyset_go5y ago0 comments

This is an interesting opinion, considering that iptables has been able to do this for decades, and nftables can, too. It is trivial to filter outgoing traffic and there are even convenient GUIs to do so.

0 comments

1 comments · 1 top-level

blub5y ago

The subject of this thread are application firewalls, like Little Snitch or https://github.com/evilsocket/opensnitch.

To be fair I haven't looked at the state of Linux app firewalls in years, maybe there's something better available, but *tables is not it.

j / k navigate · click thread line to collapse