Cerb - system firewall mechanism.
It's a kernel module, which is a complete security solution for FreeBSD.


Features.

  • Fine graind supervision of selected system calls and their arguments.
  • Possibility of system call arguments and return value change
  • Nearly arbitratry process properties' modification
  • Free runtime sysctl modification
  • Precise and configurable logging
  • Intuitive, flexible and powerful rule description language
Example policies:

For more information see Cerb Documentation:



hosted by: