RE: Securing Linux based public access terminals

["Rocky Heckman" <rocky.he () g-wizinnovations com>]

So how will this work with the new Longhorn/Whidbey products that are coming
out that require a window to display chrome?  It also requires the window to
be displayed in the viewable area which rules out sizing it bigger than the
viewport. 

R

-----Original Message-----
From: Brett Anderson [mailto:brett () cs jhu edu] 
Sent: Tuesday, 20 July 2004 6:39 AM
To: mr.happy
Cc: security-basics () securityfocus com
Subject: Re: Securing Linux based public access terminals

The window manager, ratpoison, is essentially the same except that it
makes things a bit more usable. There are no window decorations and main
windows are full-screen. Sub-windows such as a find dialog or a download
box, would be nicely centered in the middle of the screen. It is very
minimal but with simple and intuitive presentation. As I mentioned
before, you would have to remove the command that allows you to run new
programs.

On Sat, 2004-07-17 at 07:16, mr.happy wrote:
> The thing is, you don't have to run a window manager.
> when the machine boots and the user logs in you could just put 'firefox'
> or something into the xinitrc file and then only firefox will run. There
> will be _no_ window support what so ever, and newly opened windows will
> all 'stick' to the upper left corner of the screen, give it a try...
>
> greets,
> Dirk
>
> On Thu, 2004-07-15 at 13:48, Andrew Shore wrote:
> > What I would like to is run a Linux workstation (RedHat probably 9 even
> > though it's out of support) but when the user logs into the windows
> > session all they get is the browser. No menus no right click on the desk
> > top just a basic single application "dumb terminal". I've seen this done
> > before but it was too well secured for me to see how it was done! Also
> > I'd like to the workstation to log straight in as a local user with out
> > user intervention.
> >
> > Any ideas how I can achieve this or perhaps secure it in another way, I
> > remember with windows 3.x you could change the windows manager settings
> > in win.ini and it did exactly what I want. I just really don't want to
> > use Windows 3.1 ;)


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the
skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------




---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------