Linux - GeneralThis Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I want to limit internet for only certain users and also want to be able to load firefox only with a password. The password can be the same as their user account. I just don't want someone else coming along using the internet if the original user didn't log out (it's for a family with young children).
For limiting the users, I fixed the nat tables to reflect only the users I want. But for putting a password on firefox, I don't know how to do that. I can kdesu, but then they would be running as another user altogether. I saw there was a kdesudo, but that program didn't work well, probably because of permission problems. Does anyone have any solutions for putting a password on firefox?
I could set up a squid proxy, but that's a bit of an overkill for a personal desktop.
Thanks,
Murdock
Last edited by Murdock1979; 10-04-2006 at 03:33 AM.
I don't really think squid is overkill at all, imo its perfect for this application.
You could use squid & dansguardian together as they are an excellent combination for web filtering, so you can set squid to authenticate off the local passwords.
This way not only do you restrict who can use the internet, you can also protect the kids from objectionable content, and let the parents accounts bypass the filtering in DG.
Kstan:
However, I need to set up a password for users to run the internet, even after they logged in. Is there a way to password protect an executable?
Turmoil:
Quote:
I don't really think squid is overkill at all, imo its perfect for this application.
You could use squid & dansguardian together as they are an excellent combination for web filtering, so you can set squid to authenticate off the local passwords.
This way not only do you restrict who can use the internet, you can also protect the kids from objectionable content, and let the parents accounts bypass the filtering in DG.
Do you think Squid would be too heavy for a standard desktop??
Murdock
Last edited by Murdock1979; 10-04-2006 at 04:41 AM.
u can use any method, both have their advantages. If you want to use iptables the command is something like this:-
#iptables -A OUTPUT -m owner --uid-owner username-to-block -j DROP
or
#iptables -A OUTPUT -m owner --gid-owner groupname-to-block -j DROP
You can change the username-to-block or groupname-to-block to suit your environment. 'owner' is module name, don't change it.
I never try this but from my book state this command, please feed back if it work well.
Yes, I did try it and it works great. Actually, the main use I found for it was when I use Dansguardian. I need to send user packets to Dansguardian, but I must let Dansguardian packets go out through the internet. Hence, I need to use different usernames.
However, in my case, I need to password protect firefox, so when someone is logged on, someone else can't just come along a start using the internet (because the original user did not log out).
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.