A Linux Application Firewall (LAF) is a personal host-based firewall for everyday desktop Linux users. It will allow users to block or allow, specific programs from accessing the network.
e.g. The calculator application should not be allowed access to the network. However, you might want to allow it access once to get the latest currency exchange rates.
The project’s primary outcome is the development and release of a usable application firewall for use by the community.
Existing LAF implementations do not take full advantage of the Linux kernel. This results in a bad experience for end-users, ultimately, leaving the idea dead in the water.
Background chatter on the Internet, shows there is an interest in a desktop application firewall, that can provide the average user with an additional layer of security.
While expert users advocate the use of complex Mandatory Access Control (MAC) systems, such as SELinux and AppArmor to provide the same level of protection. This work attempts to find a middle ground between the two.