[K12OSN] Prevent Access to KDE...

"Terrell Prudé Jr." microman at cmosnetworks.com
Fri Jan 12 20:12:41 UTC 2007 

I second Petre's suggestion.  Having a second box, preferably hanging
off your firewall, is the proper way to do this.  Matter of fact, you
might want to look into transparent proxying if you're not using it
now.  Squid/DansGuardian supports this, and it's how we do it (with
Symantec Web Security--ugh) in my district.

--TP
_______________________________
Do you GNU!?
Microsoft Free since 2003 <http://www.gnu.org/>--the ultimate antivirus
protection!


Petre Scheie wrote:
> See the wiki:
> http://k12ltsp.org/mediawiki/index.php/How_to_edit_the_Session_menu_that_appears_on_the_client_login_screen
>
>
> However, since KDE is installed, there's nothing to prevent an
> enterprising student from opening a terminal and manually calling
> konqueror or kfmclient.  And while you could remove KDE entirely, that
> will break many of the Edutainment packages because they are a part of
> KEdutainment bundle.  Probably the best thing to do would be to move
> Dansguardian to a separate machine through which all internet traffic
> must go.  Then it doesn't matter what app they use, they can't get
> around Dansguardian.
>
> Petre
>
> Accessys at smart.net wrote:
>> can't you let them run KDE but remove or turn off the permissions to
>> Kongbrowser???
>>
>>
>> Bob
>>
>> On Fri, 12 Jan 2007, Ryan Hackl wrote:
>>
>>> ... and other sessions (other than GNOME)
>>>
>>> Students can bypass GNOME, and then access konqbrowser (kfmclient)
>>> in the KDE environment to 'bypass' our internet filters (through
>>> dansguardian).  Every minute I have a cron job to kill the process,
>>> but it's still a temptation to too many.
>>>
>>> How can I prevent students from bypassing the GNOME environment in
>>> the log-on screen?
>>>
>>> - Ryan
>>>
>>
>> ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
>>         NO RESPONSE WILL EVER BE GIVEN TO ANY MESSAGE VIA EARTHLINK
>> +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
>>
>> "They that can give up essential liberty to obtain a little temporary
>> safety deserve Neither liberty nor safety",    Benjamin Franklin
>> -   -   -   -   -   -   -   -   -   -   -   -   -   -   -   -   -  
>> -   -
>>    ASCII Ribbon Campaign                        accessBob
>>     NO HTML/PDF/RTF in e-mail                   accessys at smartnospam.net
>>     NO MSWord docs in e-mail                    Access Systems,
>> engineers
>>     NO attachments in e-mail,  *LINUX powered*   access is a civil right
>> *#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#*#
>>
>> THIS message and any attachments are CONFIDENTIAL and may be
>> privileged.  They are intended ONLY for the individual or entity named
>>
>>
>> ------------------------------------------------------------------------
>>
>> _______________________________________________
>> K12OSN mailing list
>> K12OSN at redhat.com
>> https://www.redhat.com/mailman/listinfo/k12osn
>> For more info see <http://www.k12os.org>
>>
>>
>> ------------------------------------------------------------------------
>>
>> _______________________________________________
>> K12OSN mailing list
>> K12OSN at redhat.com
>> https://www.redhat.com/mailman/listinfo/k12osn
>> For more info see <http://www.k12os.org>
>
> _______________________________________________
> K12OSN mailing list
> K12OSN at redhat.com
> https://www.redhat.com/mailman/listinfo/k12osn
> For more info see <http://www.k12os.org>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/k12osn/attachments/20070112/e30cec76/attachment.htm>

More information about the K12OSN mailing list