Current Linux Application Firewall (LAF) implementations, do not take full advantage of the Linux kernel. Which results in a bad experience for end users, ultimately, leaving the idea dead in the water. Background chatter on the Internet, shows there is an interest in a desktop application firewall, that can provide the average user with an additional layer of security. While expert users advocate the use of complex Mandatory Access Control (MAC) systems, such as SELinux and AppArmor to provide the same level of protection. This work attempts to find a middle ground between the two.
Checkout https://linux-application-firewall.org/
Watch the lightning talk below or over at vimeio https://vimeo.com/426302331.
This talk won best lightning talk award!
Network Traffic Measurement and Analysis Conference (TMA) (2020)
[ PDF ]
@conference{
author = "Peter Maynard",
title = "Linux Application Firewall: Towards a Modern Per-Application Packet Filtering Implementation",
journal = "Network Traffic Measurement and Analysis Conference (TMA)",
year = "2020"
}