Ping a Specific Port

Question

Nick Bruun

Asked: 2012-05-11 17:44:10 +0800 CST2012-05-11 17:44:10 +0800 CST 2012-05-11 17:44:10 +0800 CST

Limit which ports a user can bind

772

I'm working on a setup for a Linux based system in which user applications are executed in Linux Containers to provide confinement and limited capabilities. Each application is launched under in a container with a specific user ID.

Now, given that some of these applications are going to have server roles, I would like to be able to control which ports a specific user can bind (both TCP and UDP). One solution is manually polling /proc/net/(tcp|udp)6? but this is very inefficient for obvious reasons. So, I was wondering if there is a better way to do this?

2 Answers

Voted

mgorven · Answer 1 · 2012-05-12T10:31:12+08:00

Best Answer

mgorven

2012-05-12T10:31:12+08:002012-05-12T10:31:12+08:00

AppArmor and SELinux can be used to restrict network access by processes.

1

rackandboneman · Answer 2 · 2012-05-12T10:36:41+08:00

rackandboneman

2012-05-12T10:36:41+08:002012-05-12T10:36:41+08:00

There is also iptables user match.

1

Limit which ports a user can bind

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?