RE: Internet Cafe

• Previous message: Colin Rous: "Potetial Outpost Conflicts?"
• In reply to: Ferry van Steen: "Internet Cafe"
• Next in thread: Terry Peterson: "RE: Internet Cafe"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "Nicko Demeter" <nicko@siterra.com>
To: "'Ferry van Steen'" <ferry.van.steen@InfoPart.nl>, <security-basics@securityfocus.com>
Date: Wed, 15 Jan 2003 12:44:02 -0800

Why Win2k on every station? You could run terminals that communicate
with a Terminal Server or even a cluster of terminal servers and then
simply restrict what the users can access over the terminals.

Nicko

-----Original Message-----
From: Ferry van Steen [mailto:ferry.van.steen@InfoPart.nl]
Sent: Tuesday, January 14, 2003 11:38 PM
To: security-basics@securityfocus.com
Subject: Internet Cafe

Hey there,

for the first time I have to setup an internet cafe. I want to use Win2k
on the workstations and "cripple" it using the policies it has, then use
linux as a firewall/proxy with squid. Having only a proxy and not a
gateway should already narrow down a lot of security issues, but I
believe kazaa and some others still work through proxies and I have
hardly any idea on how secure the win2k policies are... Basically all I
want to allow them is using IE on websites/ftp sites, they should be
able to download, but only to a single folder and msn messenger should
work.

Anyways, anyone got any suggestions/comments on what I really have to
look out for? I'm thinking it should be reasonably secure, but in places
like this you always have the added risc of people wanting to damage the
OS/system or use it as a place from which to attack others.

Kind regards and TIA,

Ferry van Steen

• Next message: stefmit: "Re: OOF messaging"
• Previous message: Colin Rous: "Potetial Outpost Conflicts?"
• In reply to: Ferry van Steen: "Internet Cafe"
• Next in thread: Terry Peterson: "RE: Internet Cafe"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]