[PLUG] Perspectives on Content Filtering: kernel or userspace?

Eli Flanagan via plug on 2 Feb 2022 05:44:57 -0800

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[PLUG] Perspectives on Content Filtering: kernel or userspace?

From: Eli Flanagan via plug <plug@lists.phillylinux.org>
To: plug@lists.phillylinux.org
Subject: [PLUG] Perspectives on Content Filtering: kernel or userspace?
Date: Wed, 02 Feb 2022 08:48:33 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=typedspace.com; h=cc:content-type:date:date:from:from:in-reply-to:message-id :mime-version:reply-to:sender:subject:subject:to:to; s=fm3; bh=7 QUUnVWHNntHdM56ZAvFuuB8iTIOofCGmJOyQiTpCeQ=; b=YP7EB1/ru1oFfwRju 8s/1Al6dSnAjcPCF3EfPYADjq6UDkxbDnhXClt9qAj8iqe+mUf0scQLYcofV794V ltAXX5yTPvTEfYv+V9uS1+IQtR3u9k9rJ2R4QXNuTp8QhXrh6l8hIoU1FiaPI77G asEttmWc03RXQQ8Ji7wgkxuM8P+rWvwvdWPsP/Is9daanoolYue4TFUqwh4nQJHg 8oZkiCcAKOIMJ+V9oPf8hCu6bIcniDABCOaL1PUaL02tOa0U5d2qe4rxPUjjQCWg GsDk0FvqOz7gxCSBq4KSwnQFeNBcTQ5breIMXPrG+AbINcveXs3pdT9qcKCSfmAV 3bLyQ==
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:date:date:from:from :in-reply-to:message-id:mime-version:reply-to:sender:subject :subject:to:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm2; bh=7QUUnVWHNntHdM56ZAvFuuB8iTIOofCGmJOyQiTpC eQ=; b=W4c+D2hb5x/juf7+sa4chShO3p8GNzgImOejDLc1RPscOyVk8U97HR2ir 9vd9+7hT7HmJsGRliVEVlAaAlku7ISdaeWl8jdBttGsmQRQWJPFtG2tzQ8OKvud0 IlEZzQSRG/lZ2VvPyr2NVEHzIEVdRNdDHt9karpMkorVK2OsUz4pOKcL6qvanEeS 4/rjAfNCYPAWuLId+GbPzFNWnDutRLYIBBr3mewe+TlPLSE9Xh6mwWx0Ff1hzad0 TZj+SCR8FJ41IZtFfRksH2+eaCp9skqMn9VjPTdDG7fXug538bfgPq7mD8kDGAep Kp+iIuTdzOCjY9NEVQo+bLXQIA3ew==
Reply-to: Eli Flanagan <eli@typedspace.com>
Sender: "plug" <plug-bounces@lists.phillylinux.org>
User-agent: Cyrus-JMAP/3.5.0-alpha0-4585-ga9d9773056-fm-20220113.001-ga9d97730

Hi folks,
I've been wondering about approaches to content filtering on GNU/Linux systems.
By content filtering I generally mean blocking TCP packets based on some kind of denylist from a user (DNSBL, pihole, etc).
 
I'm curious about whether you see any major advantages to designs that integrate directly with the kernel. 

I imagine a benefit is performance and reliability. A downside is lack of portability.
Userspace software has the advantage of portability (unbound, dnsmasq).

I feel like this is a topic for discussion since I do not believe in a One Right Answer to the problem.
Cheers,
-- 
  Eli Flanagan
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

Follow-Ups:
- Re: [PLUG] Perspectives on Content Filtering: kernel or userspace?
  - From: Casey Bralla via plug <plug@lists.phillylinux.org>

Prev by Date: [PLUG] Samba
Next by Date: Re: [PLUG] Perspectives on Content Filtering: kernel or userspace?
Previous by thread: [PLUG] Samba
Next by thread: Re: [PLUG] Perspectives on Content Filtering: kernel or userspace?
Index(es):
- Date
- Thread