On Mon, 2004-11-01 at 20:27, Jaime wrote: > I work in a publish school in the US and am considering LTSP for our > younger students. The problem is, a significant number of them have > paperwork from their parents that forbid them from using the Internet > while allowing them to use computers in general. The way that we do > this on our Macintosh systems is to sort students into two > "workgroups." One of them doesn't allow the user to launch certain > programs, e.g. web browsers, FTP clients, etc. while the other one > does.
If you want to control execute permissions, other have answered that (and you also have ACL support in modern Linux as another option). You do have another option regarding access control at the network level, though - iptables per-user filtering. Check out the 'owner' iptables module, specifically the --uid-owner and --gid-owner restrictions. That way, even if they do manage to run a the browser, they won't get very far. -- Craig Ringer ------------------------------------------------------- This SF.Net email is sponsored by: Sybase ASE Linux Express Edition - download now for FREE LinuxWorld Reader's Choice Award Winner for best database on Linux. http://ads.osdn.com/?ad_id=5588&alloc_id=12065&op=click _____________________________________________________________________ Ltsp-discuss mailing list. To un-subscribe, or change prefs, goto: https://lists.sourceforge.net/lists/listinfo/ltsp-discuss For additional LTSP help, try #ltsp channel on irc.freenode.net
