[GLLUG] more Penguicon thoughts
Richard Houser
rick at divinesymphony.net
Wed Apr 25 21:13:59 EDT 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I really like the transparent proxy idea for the bandwidth control. We
need to make sure we pass the wireless AP through the same connection.
Another idea is to pass the content through a very loosely configured
Privoxy filter. The savings from not downloading tons of ads could end
up being noticeable.
I also agree that filtering some is worse than none. We wouldn't
qualify for common carrier status anyhow, but I'd assume the closer we
stick to it the better. I think we really just need to focus on the
physical aspects to control access by the youngsters. We should either
keep them out in a more public area like machines facing the room
entrance, or require additional assurances that they should be in the
area (an attending adult, badge indicating parent's permission, etc.).
Marshal Newrock wrote:
> On Wed, 25 Apr 2007 20:38:47 -0400
> Jeff Lawton <jeff at idealso.com> wrote:
>
>> Lee is planning on attending next year I sure he would share his
>> squid configuration files to make the lounge a safe place for kids.
>> We could offer passwords to allow adults to bypass the filter if
>> needed. Lee I don't mean to speak for you. would you be willing to
>> take on the kid safe proxy filter for next year?
>
> Such proxies tend to be both ineffective and too effective - that is,
> easy to bypass or find out the password, and they don't block
> everything they should, or tends to block sites that shouldn't be
> blocked. The main result will be annoying people who are just trying to
> look something up.
>
> There's also the liability issue again. I believe that if we attempt
> to block everything "bad" we become responsible for whatever gets
> through.
>
> On the other hand, a caching transparent web proxy is an excellent
> idea. I'd been thinking of this too. Next year, we should put
> everything behind a pfsense box with a proxy on it, and let it serve
> dhcp and dns to all non-terminal computers.
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Mandriva - http://enigmail.mozdev.org
iD8DBQFGL/zUUMkt1ZRwL1MRAg8iAKCPln55p/I1Ke3EV/Aii1ofDClBiQCdGPBm
bhyFLG/xyUwOPQvSUri3YQ4=
=WtjO
-----END PGP SIGNATURE-----
More information about the linux-user
mailing list