The point of restricting a user should be that they have no way around the security. Sadly there is no ISP that I know of that provides this service which is where the security ought to be placed. Keep it out of reach is on an aspirin so should be controls.
Dan's has been around a while.
One can also consider a cheap small computer running some firewall OS like untangle. Again if a person has access to it they may be able to take it off line.
Some home routers might support a good ip tables both white and blacklist. Of course you could create a white list for only those sites you deem safe and it may be an OK solution to use within Linux. FWBuilder is free to use and simple to make a firewall. It doesn't work on application level. Some routers can.
A soho firewall isn't cheap but can protect layer 7+
Last edited by jefro; 08-25-2016 at 06:22 PM.
|