• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: Basic Question: Internet Content Filter
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Basic Question: Internet Content Filter

  • Subject: Re: Basic Question: Internet Content Filter
  • From: Peter Sichel <email@hidden>
  • Date: Tue, 13 Jan 2004 16:25:02 -0500
To: email@hidden
From: Raj Doshi <email@hidden>
Subject: Basic Question: Internet Content Filter
Date: Mon, 12 Jan 2004 20:14:17 -0500

Hi,

I want to create software that can intercept HTTP packets before they
reach the browser and have the ability to change the data in the
packets. It seems to me that this software would have to operate at a
fairly low level, but I don't necessarily need to have any TCP/IP
information. I am hoping that some of you might be able to point me in
the right direction for how to get started. It appears that Network
Kernel Extensions might be able to do the job, but I can't find any
good documentation.

A socket filter NKE should work well for this.
I'm not sure where the documentation went.
There used to be a file named "nke.pdf" included under
/developer/documentation. It might have been pulled
because it was old and needs updating. It should still
be available on a 10.1 or 10.2 installer CDs.

I've read some posts which seem to indicate that
NKEs are not officially supported anymore.

That would be surprising since Apple and several 3rd party products
make heavy use of them. NKEs are a central feature of the Mac OS X
network implementation.

Could I do what I want with
the IOKit or is there something else that I'm missing? I have worked a
lot with Cocoa, but have limited knowledge about these networking
technologies. Thank You for your assistance.


You can probably get somewhere by adding a rule to the firewall telling it to divert incoming traffic to a port of your choice, and then listening on that port, forwarding on or filtering or blocking packets as your app sees fit.

This would be a two address space solution making it slower than the
NKE approach (but also easier).

Kind Regards,

- Peter
_______________________________________________
macnetworkprog mailing list | email@hidden
Help/Unsubscribe/Archives: http://www.lists.apple.com/mailman/listinfo/macnetworkprog
Do not post admin requests to the list. They will be ignored.
  • Follow-Ups:
    • Re: Basic Question: Internet Content Filter
      • From: Joshua Graessley <email@hidden>
References: 
 >Re: Basic Question: Internet Content Filter (From: Frederick Cheung <email@hidden>)

  • Prev by Date: Re: OT ping sample code
  • Next by Date: Re: Basic Question: Internet Content Filter
  • Previous by thread: Re: Basic Question: Internet Content Filter
  • Next by thread: Re: Basic Question: Internet Content Filter
  • Index(es):
    • Date
    • Thread