more updates to limit localhost port access

This commit is contained in:
Nathan Freitas 2012-01-15 10:45:18 -05:00
parent f18654a730
commit 2b15ff66ec
1 changed files with 2 additions and 0 deletions

View File

@ -454,6 +454,8 @@ public class TorTransProxy implements TorServiceConstants {
script.append(ipTablesPath);
script.append(" -t filter");
script.append(" -A OUTPUT");
script.append(" -m owner ! --uid-owner ");
script.append(torUid);
script.append(" -p tcp");
script.append(" -d 127.0.0.1");
script.append(" --dport ");