no way to log network connections and traffic of applications (processes)
The kernel / netfilter is lacking the the ability to identify the local origin of network conection. (see comments)
This lack was first reported against loging facilities, but tracked down to kernel disability.
Please foreward / reassign to handle this as appropriate.
The gnome "Log File Viewer" does not log the Process Name (or Application Name) that generated the log item. For example, if an outbound internet connection is blocked and this event is logged, only the "ID" (i.e., PID) is shown in the report. But the PID is useless because it is ephemeral and does not live past the session. Users are left with no way to learn what Application or Process was responsible for generating the log item.
The "Process Name" should be listed in log items instead of the PID.
DistroRelease: Ubuntu 10.04
Package: gnome-utils 2.30.0-0ubuntu1
Uname: Linux 2.6.32-33-generic i686
Date: Thu Aug 4 08:05:47 2011
InstallationMedia: Ubuntu 10.04.1 LTS "Lucid Lynx" - Release i386 (20100816.1)
|Changed in gnome-utils (Ubuntu):|
|status:||New → Confirmed|
|affects:||gnome-utils (Ubuntu) → rsyslog (Ubuntu)|
- Log File Viewer does not log "Process Name"
+ no way to log network connections and traffic of applications
no way to log network connections and traffic of applications
|Changed in linux (Ubuntu):|
|status:||New → Incomplete|
|no longer affects:||iptables (Ubuntu)|