Restrict access to some websites for different users

linux debian whitelist web-filtering

On a Debian based system; as the superuser, I need to restrict access to some websites but specific to user. For instance, abc.com for user1, xyz.com for user2...

I tried /etc/hosts file. Adding a line like

127.0.0.1 abc.com

does what I want. But it applies to all users as there are only one hosts file. As far as I learn so far, it is not possible to configure hosts file for different users. Are there any other ways of doing this?


If users are locally logged in, you can use iptables:

iptables -A OUTPUT -o EXTERNAL_IF -m owner --uid-owner USERNAME -d DESTINATION_WEB -j REJECT

where:

  • EXTERNAL_IF is the name of the Internet-bound interface (e.g. eth0)
  • USERNAME is the login id of the restricted user
  • DESTINATION_WEB is the DNS name or IP address of the destination website. Beware of sites that host many websites (such as blogger) or those that have multiple public IPs (such as Google)

Related

Could not initialize an installer - Mac
Mail.app crashes after update to El Capitan OS
why doesn't broadcast ping work?
Are there any differences between MacPro4,1 2009 and MacPro5,1 2010 besides firmware?
How to install Windows 10 on external SSD that currently runs OS X?
Excel chart formatting lost when Refresh All or individual Right Click on Data > Refresh
using Microsoft Arc Mouse surface edition on MacBook Air 2015
compile error: <atomic> is not implemented
Importing photos on Mac OS X
nsurlsessiond downloading 100s GB in a month
Where are Windows photo albums actually saved
Recover deleted files from MacBook Retina's SSD