Karol, Thanks for the reply.
Thanks also to the person who sent me a link to <http://www.toaster.net/wireless/best_practices/openap.html> Good info. Unfortunately none of these suggestions really get to the heart of what I am looking for. I would like to make this link available to the world. I'm not concerned about leeches camping on the system. I already have a traffic shaping system on the main firewall. If someone got obnoxious I could deal with them but in general I am willing to give the world away. I don't care about billing and I would like to avoid usernames. My concern is liability for people doing bad things. Spammers are my biggest concern. I hate spammers. I have seen some incidental reports of spammers and scammers working out of cyber cafes. I want to make life as difficult for them as possible. I don't want to block port 25. My ISP does that to me and it annoys me to no end. I have a list of ports I block. NetBIOS, known trojans, tftp, etc. Unless there is a good reason to block a port I try to keep it open. I could intercept the SMTP stream then feed it through a spam blocker. I'm not sure how to notify the sender though. That would probably take more coding skills than I have anyway. I am frighteningly inept when it comes to scripting. The Active Portal page suggests using Snort and Spamradar on outgoing connections. Incidents would trigger ipchains/netfilter/iptables/ipfw/aMonkeyWithWirecutters to block that user. I like that approach. Allow everything until the user demonstrates malicious intent. It would be pretty easy to get around the IDS but it should be enough to keep the bad guys from camping on my link. Am I just too far ahead of the curve? I remember back in 1995 or so complaining about how the world really needed a MTA with built in antivirus. Everyone thought I was stupid :-( <rant>I hate the bloody edge. I spend my life pulling clients away from the new and cool. How come I keep wanting it for myself? </rant> Dan At about 3:51 PM -0700 on 5/8/04, Karol Kulaga did write some really nifty stuff: _______________________________________________ BAWUG's general wireless chat mailing list [unsubscribe] http://lists.bawug.org/mailman/listinfo/wireless
