Internet Kiosk: Securing

**flea** · 10-09-2001, 04:09 PM

I am helping set up an internet kiosk, which will be left unatended, in a semi-public place. Securing the hardware should not be to much hassle, with a drill and some big bolts

The software is the problem.......

It will probally be running openBSD, but Linux and os/2 are not to be ruled out.

It will likely have a 24/7 dialup connection.

Because it will be left unatended, the computer will need to be passworded, and after a certain amount of time passes (according to the amount of time a customer pays for) the computer should lock up again.

Any idea's, or am i gonna have to hire a small kid with stopwatch and a baseball bat?

Any suggestions, any thing at all would be helpfull

-Flea

Ps. The computer will also be a backup web/mail server.

**SpookyEddy** · 10-09-2001, 04:45 PM

Hi flea,

I use InteractiveBastille to lock down linux stations, I believe it is aimed at RedHat & Mandrake.

http://www.bastille-linux.org/

Its basically a hardening script that can provide:

IPchains / IPtables firewalling.
IP masquerading.
General lock down ie removing SUID programs etc.
"physical" protection ie password protecting single user mode & boot loader etc.

May be worth a look (although I am a self confessed linux newbie

)

Regards

Eddy

**flea** · 10-09-2001, 07:24 PM

Thanks Eddy, it looks like a [h]andy tool. Ill dig out a copy of madrake and give it a go next week, when i will have a spare machine.

-Flea (also a newbie

)

**pbharris** · 10-09-2001, 08:54 PM

You people are *NOT* newbies!

**SpookyEddy** · 10-09-2001, 09:06 PM

Cheers mate,

Nothing like a bit of praise from the "powers that be" to make you feel important

Good luck with the project flea.

Regards

Eddy

**flea** · 10-10-2001, 07:27 PM

^B^U^M^P^

*NOT* newbie

**pbharris** · 10-10-2001, 09:22 PM

Hello Flea,
Please see:

http://www.linuxdoc.org/HOWTO/Kiosk-HOWTO.html

There is a reason they specify fvwm2 - it can be made quite difficult for anyone to open a shell and it is very easy on system resources. If you need any help with fvwm2 I can very much help!

Also if this is a touch screen then Xfree86 will need to be set up differently.

While this mentions linux I think ity would work just as well on freeBSD which uses xfree86 and can use fvwm2 also.

Hope this help,
paul

**flea** · 10-10-2001, 10:52 PM

thanks Paul, thats excelent. It looks like just what i need, or at least a large bit of the puzzle.

Thread: Internet Kiosk: Securing

Thread Tools

Search Thread

Display

Internet Kiosk: Securing

Posting Permissions