an internet cafe` problem

[hobbdebub]

Most content blocker out there make you pay for them but there is a way you can do it with a program called Proxomitron. All it is is a proxy but it allows you to write your own filters. An example of the type of blocking you want (sex sites, porn, etc...) could be:

Name = "Keyword content blocker"
Active = TRUE
Multi = TRUE
Limit = 200
Match = "(<html>|<head&gt*(sex|****|pussy|dick)*"
Replace = "<html><head><title>Forbidden</title></head>"
"<body>"
"<h3>Web site request blocked.</h3>"
"</body></html>\r\n\k"

I found this filter here and just changed the keywords a bit. To really make this effective you are going to have to add quite a few more keywords to that list to block the traffic. I know that this will not be 100% effective but it will help, the program is also not being updated anymore, but you can download it at these sites:

http://www.computercops.biz/postt24306.html
http://duke.usask.ca/~macphed/prox/

I hope this helps.

[chsh]

Originally posted here by MilitantEidolon
Well luckily for you their is lunix and wonderful programmers who don't see a dang red cent for their work but get contentment from seeing people learn from and reuse their proggies.

This isn't quite accurate. The core kernel developers as well as the core developers for several major projects do indeed see several red cents for their work. That is not the reason they do the work, but it's not as if they are homeless and hungry because of writing Open Sourced software.

[MilitantEidolon]

This isn't quite accurate. The core kernel developers as well as the core developers for several major projects do indeed see several red cents for their work. That is not the reason they do the work, but it's not as if they are homeless and hungry because of writing Open Sourced software.

I Didn't mean it strictly linux I meant open source programmers in general. You are right, there are alot of open source programmers that do get paid good. However there are also a large amount that do not. I know that my brother and his buddies spent 2 years developing a web tracking program and left it open-source. They published it and everyone hopped on board taking and changing it and my brother and his buddies never got a penny however they were content with see their software at work.

- MilitantEidolon

[slarty]

Your best bet is certainly to use a centralised firewall solution.

Ideally, a transparent proxy with content filtering will stop undesirable requests - it can easily be set to block worm-related traffic (and thus your ISP should never see it even if malware gets inside), but more importantly, you will be able to set any rules you want on it. Non-web track can be blocked at the gateway as you see fit. I'd recommend blocking all outgoing traffic except for certain types you want to allow (HTTPS perhaps)

IMHO, virus scanning is something best done on the desktop level, but you will need to invest in a reputable virus scanning program ideally with a central update server which lets you push updates to the workstations.

No user should be allowed administrator access - ensure that all machines are locked down, permissions-wise, and create a single user for all customers. Then have a script or something which nightly logs them off and wipes their profile, or if you can afford it, get a server based solution to totally re-image the machines.

Users who aren't administrators should not be able to disable the virus checker, and you should make sure the boxes are fully patched and remove (or just disconnect) all removable drives. If the machines have USB, be sure to prevent people from sneaking USB devices into the cafe.

Reserve a machine somewhere really near the desk for people who want to use removeable devices, they are less likely to try anything if they're right under your nose.

Slarty

[KorpDeath]

I empathize with your situation but wasn't any of this even thought about BEFORE the business was started? Either you fooled the owner into believing something that wasn;t real or you got the wonderful job of fixing someone else's mess, and a big mess at that. Either way the owner WILL without a doubt have to fork over SOME type of money to fix it. Either by paying a c=onsultant or by buying a licensed product. There is no, if, and , or but's about it.

Originally posted here by chsh
This isn't quite accurate. The core kernel developers as well as the core developers for several major projects do indeed see several red cents for their work. That is not the reason they do the work, but it's not as if they are homeless and hungry because of writing Open Sourced software.

Sometimes, that which is NOT said is more important than that which IS said, chsh.

[lumpyporridge]

Another linux suggestion with squid http://www.squid-cache.org/ as a proxy, you a can get several good filtering programs such as http://dansguardian.org/ that fit in with squid, and add blocking http://adzapper.sourceforge.net/ to save you bandwidth . All it takes is the cost of an old box and a bit of learning. squid with adzap is a joy to use and rock solid.

[Spyder32]

To add more to what chsh and Korp are talking about, I'd actually like to know the "percentage" so to speak of Open-Source programmer's that do get paid for their effort's and work to those that don't. Sure, there are donation's, sponsorships, etc but do they get paid well enough to live off of? But like I said, I'd want to know a little comparison of the two. It would be most interesting to me.

[mrlucifer]

use clamwin as your antivirus. Its free, lightweight, and works great.

www.clamwin.com

[mrlucifer]

Just to give you a heads up. the Clamwin does not have a "on-access real-time scanner". But you can setup scheduled scans.