Application based firewalls in linux

There are none I know of. Allright, there is one, tuxguardian, but it seems like development has stalled. I have seen nothing move on their website for almost two years now.

I’m still mainly a Windows user, unfortunately. And in Windows, I know what application is trying to access the internet. That’s nice, since I like to keep an eye on that and as we all know, in the world of Windows that necessary. I feel like I’m in control of my internet access.

In linux I can use a firewall too. Excellent ones like firestarter exist that make it easy for lay users like me to configure. But I always feel I have to keep doors open. If I want internet access I need to have port 80 open. And to me that reads like every other program trying to get access to the internet through port 80 will get that access.

I see the difference as follows: in Windows I control who can get in and out of my house through one of a few thousand doors. Every time one wants to get in, my house security system asks me if I want it to open the door so that that person can get inside (or outside). For family members I allow the door to be opened. For thieves I don’t. The same door can be opened for family members and closed for thieves. In linux I have to leave a door open for my family members to be able to get inside. And that doors stay open. If the thieve happens to try to get into my house (or transfer all furniture out) using that door, he gets in easily.

I know things aren’t so easy. If linux wasn’t secure it wouldn’t have gained such a widespread acceptance, especially for its security. But I also have tried on many occasions to get an answer to my concern and never got any. I’m sure there is one and I’m all ears if someone can enlighten me.