Peter Brooks wote:
>Over the past few days I've done a fresh install of Gentoo 2006.1 with
>gnome-light installed and the main purpose of providing a locked down
>machine for users.
> Cheers for reading my paranoia.
>
G'Day...
Paranoia not - I have recently been traveling in Australia and created a
very simple blog of photographs for family and friends using Putty, Vim
and windows jpeg-resize tools. This meant dropping into Internet cafes
every few days.
The machines in the 'hour per dollar' cafes in large towns were pretty
rough and Linux would have been perfect in these situations. Interestingly
all machines I used allowed me to download and run Putty and a jpeg resize
tool as well as run Putty, ftp and download from my camera usb with no
restrictions. Apart from the free e-lounge at Sydney airport!
To that end a script that could lock machines down based on what has been
discussed in this thread would be handy in these and many other
situations.
Are there any open source Internet cafe type Linux distributions in
existence? One Internet cafe I used had a situation where a brand new
machine image for each new user login was loaded to the hdd via PXE from a
server. Highly secure and good for all public access workstations whatever
the OS. However this did eliminate the need for locking down the machine
to a greater or lesser extent. Leading to the possibility for yourself of
having a new image for each user plus locking down some, but not all,
features as a compromise to preserve the integrity of your student
machine. PXE enable NIC and a server somewhere required.
Damian B
--
Damian Brasher
www.interlinux.co.uk/oz.html
All mail scanned by clam-av
http://www.clamav.net/
