[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Advanced traffic shaping with iptables?



Thus spake Marco Bonetti (marco.bonetti@xxxxxxxxxxxx):

> On Wed, September 26, 2007 02:41, tor-op@xxxxxxxxxxxx wrote:
> > It looks like the script needs Tor to run on a virtual address.
> > This could be done by adding another address to your default interface
> Yesterday night (CEST) I've modified the script to use only one ip, packet
> matching is done via uid. Unfortunately the uid/gid/pid/ matching is
> broken on smp machines (according to "man iptables"). I'll made it
> avalaible this evening, as soon as I get back home.

Wow, nice work! I didn't see this option. Completely didn't expect it
to exist either.

Actually, my iptables manpage only says that pid, sid and command
matching are broken on SMP.  Perhaps UID is actually safe?

-- 
Mike Perry
Mad Computer Scientist
fscked.org evil labs

Attachment: pgpkswFKx7yk9.pgp
Description: PGP signature