LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 02-05-2009, 05:56 PM   #1
lothario
Member
 
Registered: Apr 2004
Posts: 340

Rep: Reputation: 30
Restrict access by domain per user


One Ubuntu Desktop and 3 different users.

When Bob logs in, I want to block access to:
www.thatParticularSite.com
ssh.thatParticularSite.com
ftp.thatParticularSite.com


When Tom logs in, I want to block access to:
www.someSuchSite.com
mail.reallyThatSite.com
www.thatPlace.com
ftp.NoGo.com


When Joe logs in, I want to block access to:
www.LotsOfNews.com
mail.notThere.com


Don't care about http, ftp, ssh, tcp, udp, ...
I need to block by domain.

Want to avoid installing additional software on the system.
Can I do this by editing some files?
Can I edit files in the user's home directory and then change the permission to read-only for the respective user?
 
Old 02-06-2009, 08:37 PM   #2
CoderMan
Member
 
Registered: Jan 2009
Location: Gemini Capsule 25164
Distribution: Gentoo
Posts: 375
Blog Entries: 24

Rep: Reputation: 43
Quote:
Originally Posted by lothario View Post
One Ubuntu Desktop and 3 different users.

When Bob logs in, I want to block access to:
www.thatParticularSite.com
ssh.thatParticularSite.com
ftp.thatParticularSite.com


When Tom logs in, I want to block access to:
www.someSuchSite.com
mail.reallyThatSite.com
www.thatPlace.com
ftp.NoGo.com


When Joe logs in, I want to block access to:
www.LotsOfNews.com
mail.notThere.com


Don't care about http, ftp, ssh, tcp, udp, ...
I need to block by domain.

Want to avoid installing additional software on the system.
Can I do this by editing some files?
Can I edit files in the user's home directory and then change the permission to read-only for the respective user?
I'm not an expert on the subject of packet filtering, but I don't think that what you want is going to be done by just editing a few config files on the Ubuntu Desktop. I've never heard of anyone trying to block individual users on one machine in that way. Usually blocking is not done on the desktop machine, but rather on the router that is providing the connection. Furthermore, you're not just dealing with domain names, but IP Addresses. And also individuals can access restricted web sites through proxy web browsers on the internet.

If you are trying to deal with an employee porn problem or something similar, you might want to consider another approach, like spying on their internet usage, or back-end packet filtering.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
VSFTPD - restrict user access? v00d00101 Linux - Security 2 08-09-2011 02:35 PM
Restrict a user to only have access to ONE single folder. colltek Linux - Newbie 4 01-30-2009 10:41 AM
restrict access of a user to two directories only vikas027 Linux - Enterprise 5 04-15-2008 11:18 AM
how to restrict a user to a single domain in sendmail with multiple domains muralee29477 Linux - Server 2 04-30-2007 01:16 AM
how to restrict one particular user to access one particular folder? Xeratul Linux - Newbie 6 02-06-2007 01:01 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 01:35 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration