LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 03-28-2004, 08:33 PM   #1
matthew.collins
LQ Newbie
 
Registered: Mar 2004
Location: Sydney
Distribution: Slackware, Fedora
Posts: 10

Rep: Reputation: 0
Tips on Local User Security


Hello,

Sorry, I'm not sure I posted this in the wrong forum, if not please suggest another forum.

I'm trying to set up a machine at my School where Students can surf the internet but do nothing else. So I need some tips on what to 'lock' down and how to do it (I'm a linux Newbie).

I'm also need some help making the computer boot up straight to a web browser, and not giving them access to anything else, including a command line.

Do anyone know of any good how to's? So far I've found a document called "The Linux Public Web Browser mini-HOWTO"

Thanks,

Matthew Collins
 
Old 03-28-2004, 10:01 PM   #2
vi0lat0r
Member
 
Registered: Aug 2003
Location: Lewisville, TX
Distribution: Kubuntu
Posts: 295

Rep: Reputation: 30
You can configure a firewall to block everything except, then add ports 53, 80, and 8080 to the allow ports list.

As for making it only a browser... I guess you could create a user account and remove all their access rights... then open the browser using your root password... then they couldn't open much at all I don't think.
 
Old 03-28-2004, 10:03 PM   #3
matthew.collins
LQ Newbie
 
Registered: Mar 2004
Location: Sydney
Distribution: Slackware, Fedora
Posts: 10

Original Poster
Rep: Reputation: 0
Thanks, I'll look into the firewall...what Linux Distro would you suggest?

Matthew Collins
 
Old 03-28-2004, 11:49 PM   #4
KneeLess
Member
 
Registered: May 2003
Distribution: Debian GNU/Linux 3.0 Sid, OpenBSD 3.5
Posts: 190

Rep: Reputation: 30
Any distro would do, use one that you're comfortable with. As for locking down the system, you could put them in a chroot jail, with the necessities. Try 'man chroot' and google it for more information. As for ports 53, 80, and 8080, I see no reason to have such ports open, what is your reasoning for this? And your school's switches should provide all the protection from the outside you would need...
 
Old 03-29-2004, 01:04 AM   #5
matthew.collins
LQ Newbie
 
Registered: Mar 2004
Location: Sydney
Distribution: Slackware, Fedora
Posts: 10

Original Poster
Rep: Reputation: 0
Thanks, I'll look into Man Chroot.

Also, I don't have problem with external security...it's more the students doing things to the computer locally, e.g. while they're using it.

Matthew Collins
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Setup local machine to allow lan machines to retrieve its local user mail. Brian1 Linux - Networking 3 03-30-2006 05:04 AM
Multi User Security Tips jestah84 Linux - Security 2 05-12-2004 10:08 AM
tips for user security spoody_goon Linux - General 3 02-01-2004 09:05 AM
Maintaining RH 9 Security Tips statmobile Red Hat 1 12-06-2003 03:48 PM
security tips for providing shell access with debian 3.0 stable? salami Linux - Security 2 08-18-2003 10:39 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 08:34 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration