| commit | df8100fd6a02b72d1d871ccaabe9aa574c7ac320 | |
| author | Kill Your TV <killyourtv@i2pmail.org> | |
| Wed, 30 Jul 2014 01:44:03 +0000 (30 01:44 +0000) | ||
| committer | Kill Your TV <killyourtv@i2pmail.org> | |
| Thu, 31 Jul 2014 23:26:20 +0000 (31 23:26 +0000) | ||
| tree | ff458ce0e022a16be0423cfd17a097082b11a596 | treesnapshot (tar.gz zip) |
| parent | abd3db5d457ea75d696bfb681c7a50dfd5e80a9a | commitdiff |
stricter I2P fw rules
This commit will:
- deny I2P from accessing the LAN
- deny I2P from accessing the loopback device, except for select
whitelisted services
- allow I2P access to the Internet
The ACCEPT rules will only be enabled when the string 'i2p' is passed at
the boot prompt.
The rules which DENY or REJECT access for the 'i2psvc' user will always
be applied.
This commit will:
- deny I2P from accessing the LAN
- deny I2P from accessing the loopback device, except for select
whitelisted services
- allow I2P access to the Internet
The ACCEPT rules will only be enabled when the string 'i2p' is passed at
the boot prompt.
The rules which DENY or REJECT access for the 'i2psvc' user will always
be applied.
| config/chroot_local-includes/etc/ferm/ferm.conf | diffblobblamehistory |