On pe, 2003-09-26 at 09:22, Craig Main wrote: > Hi all, > > Is there a way to diable the above to stop people getting to a console?
You could remove the gettys from your /etc/inittab file. If you have sshd running, you'll still be able to log in remotely to maintain the boxes. > I am busy setting up some boxes to be used in an internet cafe and am > trying to secure them and only allow certain apps to be run. (maybe > there is a "kiosk" distro that I don't know about? If the users can't obtain a shell from console, xterm, gnome-terminal, konsole or the like, then you could easily limit users' access to only the programs you've installed to kde/gnome/wm. Keep in mind though that you will need to strip the Run command from the WM menus, or the user could execute shell commands.
signature.asc
Description: This is a digitally signed message part
This message has been 'sanitized'. This means that potentially
dangerous content has been rewritten or removed. The following
log describes which actions were taken.
Sanitizer (start="1064559471"):
Forcing message to be multipart/mixed, to facilitate logging.
Writer (pos="800"):
Part (pos="970"):
Part (pos="191"):
SanitizeFile (filename="unnamed.txt", mimetype="text/plain"):
Match (names="unnamed.txt", rule="9"):
Enforced policy: accept
Part (pos="1141"):
SanitizeFile (filename="signature.asc", mimetype="application/pgp-signature"):
Match (names="signature.asc", rule="15"):
ScanFile (file="/var/quarantine/att-signature.asc-3f73e36f.UL"):
Scan succeeded, file is clean.
Enforced policy: accept
Anomy 0.0.0 : Sanitizer.pm
Sanitizer version 1.63 (Debian GNU/Linux)
-- [EMAIL PROTECTED] mailing list
