Re: software firewall that allows inter-process traffic control?

jKILLSPAM.schipper@math.uu.nl wrote:
> Ansgar -59cobalt- Wiechers <usenet-2005@planetcobalt.net> wrote:
>> jKILLSPAM.schipper@math.uu.nl wrote:
>>>>> I'm looking for a software firewall that allows inter-process traffic
>>>>> control. For example, to give me the opportunity to forbid a certain
>>>>> program to access an HTTP proxy running on my own computer.
>>>>
>>>> That's not possible.
>>>
>>> No, it doesn't seem too useful, but it is possible, at least on many
>>> computer systems.
>>
>> Wrong. He wants to prevent a certain program from accessing the proxy.
>> That's simply impossible because all I have to do is stick a proxy of my
>> own between them.
>
> Well, that gets a little harder when you use whitelists instead of
> blacklists, as you should, but yes.

When programs are whitelisted (on a Windows box) then you start with the
kinky stuff. If at least one program is allowed to access the proxy,
then every other program can too, because it can be controlled through
window messages. Have a look at e.g. [1].

> There are probably quite a few ways around it, and it is of course
> nonsense if the blocked program runs with administrator rights, as is
> likely the case on Windows, but it's not *impossible*.

If there are ways around it, then it *is* impossible. At least for every
definition of "impossible" that I am aware of.

[1] http://www.copton.net/vortraege/pfw/en.html

cu
59cobalt

-- 
"Another option [for defragmentation] is to back up your important files,
erase the hard disk, then reinstall Mac OS X and your backed up files."
--http://docs.info.apple.com/article.html?artnum=25668