Linux - SoftwareThis forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I'm running a Suse 8.2 server with a couple of MS XP workstations. I'd like to control the outward (and inbound) HTTP traffic of the users by limiting the daily access time per user-id. Is there any software package for Linux available with such a feature?
Are you using the server as a gateway/router or just as a web proxy?
Not sure about by username, but for sure by IP address. You can use any firewall to do that.
By username, you might actually have to create an LDAP server or something like that for the win boxes so that they have to log onto the network and then your machine would validate the services they were allowed.
Also, you can set up a web proxy and use Dan's Guardian to filter out bad content (or any content for that matter).
Squid can do that - but it can be a fiddly thing to configure. You'd create an access control entry like (you'd need other entries for users, IP addresses, etc.):
Code:
acl kidstime time F 09:00-12:00
This would allow access on a Friday from 9am to 12 noon. Then you enable the acl:
Code:
http_access allow kidstime
The thing is, the entries have to be in the right place in relation to the other acl entries. Fortunately you can turn up the debug level and get back plenty of info from the logs, but it's not something you do in 5 minutes unless you're familiar with this sort of thing.
If there is a way to let Squid know what the user is, then it's the solution. I'm using a DHCP server and no static IP addresses (kids are demanding these day's).
Any suggestions?
(by the way the server is used as gateway and file server. It also hosts a MTA. offcourse it's all firewalled.)
The users would have to sign in to the proxy server - Squid can use authentication. There needs to be a passwd file (it can be created with the htpasswd app that comes with Apache) and the squid.conf file needs to contain something like the following in the acl lists:
Code:
acl internet proxy_auth REQUIRED
and the following in the access section:
Code:
http_access allow internet
Squid supports other forms of authentication as well but that's the only one I've set up. My users have Firefox as their browser and just save the proxy username/password. Since they also have to sign in to their PC, it's only a small risk saving the proxy details.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.