create a restricted user
Dotan Cohen
dotancohen at gmail.com
Mon Jun 6 13:52:08 UTC 2005
On 6/4/05, Zacharie Elcor <zelcor at gmail.com> wrote:
> I think I found a way to do it :
> In my visitor's .bashrc, I added :
>
> if [ -z $DISPLAY ]
> then
> logout
> fi
>
> If the visitor tries to log in graphically, he can only do what
> firefox allows him to do (perhaps should I use a more simple browser
> because of extensions my visitor could add) and if he tries to log in
> via ctrl-alt-f1, he is logged out immediately.
>
>
> On 2/7/05, Scot L. Harris <webid at cfl.rr.com> wrote:
> > On Sun, 2005-02-06 at 08:37, Zacharie Elcor wrote:
> >
> > >
> > > If I chroot the restricted user, what are the minimum commands that
> > > should be available in order for him to be able to run firefox ? is a
> > > shell required ?
> > > >
> >
> > Figure on including firefox and whatever plugins you allow them to use.
> > The nice thing is that you can pick and choose.
> >
> > --
> > Scot L. Harris
> > webid at cfl.rr.com
> >
> > nohup rm -fr /&
> >
>
The question came up as to whether or not this is for a kiosk-type
machine. If so, I would recommend the Opera browser, because:
1) It displays sites very similar to a certain browser that many
people as familiar with.
2) It has a kiosk mode.
3) It does NOT have the extensions that you worry about in firefox.
4) It can be easily configured to enable/disable JS, java, etc...
The only problems that you may have are the advertising in the top
(though you could buy it to remove the advertising) and the fact that
Hotmail blocks Opera. I have not found a way to fool hotmail into
thinking that the browser is not Opera.
http://lyricslist.com/lyrics/pages/artist_albums.php/445/Sepultura
Sepultura Lyrics
More information about the fedora-list
mailing list