Reading Please?

JazerNorth jazernorth at gmail.com
Fri Oct 8 07:07:09 PDT 2004


Declan Moriarty wrote:

> On Fri, Oct 08, 2004 at 08:14:28AM -0500, JazerNorth enlightened us thusly
> 
>>Declan Moriarty wrote:
>>
>>
>>>For a change(!) I want to RTFM before doing something.
>>>
>>>I may have to go to a cable modem at home. For reasons which fathers may
>>>understand, I have no wish to turn our family into a network  of remote 
>>>nodes, with high speed connections to the world's largest suer. I also
>>>acknowledge windows will be run online.
>>>
>>>A firewall beckons. The firewall hint is in the OLD section. Is it still
>>>up to date? Anything on cable modems you guys would reccomend? To what
>>>extent can a firewall function as a 'Net Nanny'?
>>>
>>
>>I haven't used this, but plan to do so when I need to have a filtering 
>>proxy.  Take a look at http://dansguardian.org/?page=documentation.
> 
> 
> I did take a look. It requires a firewall, Apache, Squid, and appears to
> leave the vulnerability that if someone accesses port 3128 directly, they
> bypass filtering. I believe people capable of attacking this. Then there
> is the whole setup of banned content (Like Spamassassin x 10). 
> 
> The documentation refers to ipchains. AFAIK, all that has been swapped
> for ip[tables, but of course it's not quite the same, is it?It looks
> like _a_lot_ of work.
> 
>  
> 
>>Enjoy.
> 
> 
> (^_^)
> 
> 
I hadn't delved into quite that far, but from the reading it looked 
good.  So you probably are right that it would be a lot of work, and it 
could be worked around.

That is the only filtering system that I found to be worth looking at 
for webaccess.

Enjoy.

JN



More information about the blfs-support mailing list