| View previous topic :: View next topic |
| Author |
Message |
ewtrowbr
Apprentice
Joined: 08 May 2004
Posts: 153
Location: Columbus, OH
|
 Posted: Fri Nov 19, 2004 6:03 pm Post subject: Content filtering firewall for gentoo |
 |
|
I am about to rollout shorewall for a 600 student k-12 school in Louisiana. One requirement is that porn and other grown-up nasties not corrupt young minds.
Does anybody know of a good program that will work with (or instead of) shorewall that can restrict pr0n web access. I'm not really so concerned with other methods - ftp, nntp, etc. If they're clever enough to get at it that way, they deserve to see some b00bies.
thanks in advance,
erich |
|
| Back to top |
|
 |
mayday147
l33t
Joined: 22 Mar 2004
Posts: 825
Location: Bucharest, Romania
|
| Posted: Fri Nov 19, 2004 6:12 pm Post subject: |
|
|
You can use the 'p2p' module for IPtables or you can install Squid and restrict all the sites named "*xxx* , *pr0n* , *sex* etc "
_________________
gentoo.ro |
|
| Back to top |
|
|
ewtrowbr
Apprentice
Joined: 08 May 2004
Posts: 153
Location: Columbus, OH
|
| Posted: Fri Nov 19, 2004 6:29 pm Post subject: |
|
|
The string matching is not really going to do it... Unless there is some sort of comprehensive list of internet naughtyness I can import into the application...
This seems like the type of application that would lend itself strongly to bayesian filtering...
any other input?
e |
|
| Back to top |
|
|
Casper Gasper
Tux's lil' helper
Joined: 07 Sep 2004
Posts: 75
Location: London
|
| Posted: Sat Nov 20, 2004 2:24 pm Post subject: |
|
|
I tried adding a regex list I found on the internet to squid and it didn't work too good -- only filtered a few sites, and blocked a few ligitimate ones too.
You might try DansGuardian which is a plugin for squid -- I've never used it, but it looks like it will do the business.
Casper. |
|
| Back to top |
|
|
ewtrowbr
Apprentice
Joined: 08 May 2004
Posts: 153
Location: Columbus, OH
|
| Posted: Sat Nov 20, 2004 4:36 pm Post subject: |
|
|
Dansguardian seems to be exactly what I'm looking for.
thanks for the info. I'll let the group know how my deployment goes.
erich |
|
| Back to top |
|
|
ewtrowbr
Apprentice
Joined: 08 May 2004
Posts: 153
Location: Columbus, OH
|
| Posted: Thu Dec 16, 2004 3:34 am Post subject: |
|
|
It went great... shorewall/squid/dansguardian is my fw of choice...
erich |
|
| Back to top |
|
|
ewtrowbr
Apprentice
Joined: 08 May 2004
Posts: 153
Location: Columbus, OH
|
| Posted: Mon Jan 31, 2005 12:57 pm Post subject: |
|
|
Dan's guardian is great. I love it. But I have some new requirements...
I need a filter that will take an active directory login and assign a content ruleset based on the user. Dans won't do this.
In order to get te AD piece working, I can just turn on the IAS service to provide linux with a radius server to work with... Much easier.
Any ideas for a content filter that would work for me?
please advise...
erich |
|
| Back to top |
|
|
yakapiece
Tux's lil' helper
Joined: 03 Feb 2004
Posts: 126
Location: Atlanta, GA
|
| Posted: Wed Feb 16, 2005 9:48 pm Post subject: |
|
|
I was wondering if you found a solution, where you could take in an active directory login to apply a set of rules?
Also, not just content filtering but how about content monitoring? Find much on that? |
|
| Back to top |
|
|
|
Networking & Security
