From mboxrd@z Thu Jan 1 00:00:00 1970 From: Stephen Samuel Subject: Re: Single purpose Date: Tue, 01 Aug 2006 17:42:06 -0700 Message-ID: <44CFF4DE.2090509@bcgreen.com> References: <3075.24.67.39.21.1152993894.squirrel@dctchambers.com> <200607261342.07001.gustavo@compunauta.com> Mime-Version: 1.0 Content-Transfer-Encoding: QUOTED-PRINTABLE Return-path: In-Reply-To: <200607261342.07001.gustavo@compunauta.com> Sender: linux-admin-owner@vger.kernel.org List-Id: Content-Type: text/plain; charset="iso-8859-1"; format="flowed" To: =?ISO-8859-1?Q?Gustavo_Guillermo_P=E9rez?= Cc: scott@dctchambers.com, linux-admin@vger.kernel.org Gustavo Guillermo P=E9rez wrote: > El S=E1bado, 15 de Julio de 2006 15:04, Scott Taylor escribi=F3: > =20 >> Hello admins, >> >> I have a client that wants a workstation that can do only one thing: >> connect a browser to a website and that is all. Only the one websit= e too. >> I'm thinking something with Squid, maybe, or some IPTables entry, o= n a >> stand alone workstation (probably CentOS). >> >> Does that sound do-able? >> =20 > Yes of course > =20 >> Any suggestions? >> =20 > Reasemble some kind of live distro, not just CentOs, like knoppix or = Gentoo=20 > Live DVD. Remove default gateway and add the name resolution of your = webpage=20 > to /etc/hosts, and of course add route just only for this webpage. > > I use to do it on my systems, and for me like other people suggest, a= DVD4.3GB=20 > is enough, no hard drive involved. or PXEBoot if you are on some kind= of lan. > > :) > =20 in /cdrom/KNOPPIX/knoppix.sh , you can also turn off the shells on the=20 consoles (by replacing /etc/inittab) and change /etc/sudoers so that other stuff= =20 isn't available. Since you ONLY want to be able to run the browser, then you may also=20 want to run a more limited desktop (like fvwm), and remove all of the mouse options.=20 That'll make it reasonably difficult to run anything other than the browser. You might even set it up so that the browser is restarted whenever it d= ies. Also note that, if you want a minimal system, you can set the=20 workstation to pxeboot and export the knoppix image from another UNIX workstation (I've had it= =20 running off of both a knoppix box and an old FreeBSD box). Most cheap motherboards=20 these days allow you to pxeboot off of the built-in ethernet. That way you have a=20 machine with zero mechanical other than the fans and no way to boot strangely other=20 than guessing the BIOS password. --=20 Stephen Samuel +1(778)861-7641 samnospam@bcgreen.com http://www.bcgreen.com/ Powerful committed communication. Transformation touching the jewel within each person and bringing it to light. - To unsubscribe from this list: send the line "unsubscribe linux-admin" = in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html