[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Win Lab 0.0.2



> Securing the workstation:
> 	WinNT -- quite secure, however, many office products including MS don't
> like a read only harddrive.  However, all the built in software is okay
> with this (possible exception is the help utilities).

Hmm... I've done (unfortunately) some research on NT security. The main problem
is, that any installation can shoot all of your security to hell. And in any
case a read only HD shouldn't be needed/used with NT. Too many problems 
will rise. (After doing some research on NT security my thought about NT
being 'quite' secure have diminished to it looks secure at a glance but it
isn't.)

> 	Ghost Images -- Best bet would be a ghost imageevery morning..., .  What I
> am looking for does not neccessarly have to prevent the student from
> modifying it during that session (though it would be nice to have some
> options in an rc file to set), but what files I need to give the students
> read access to, but take away write access. (Harry McGregor)

This should be reasonably easy to configure. Just create a script that 
creates the users home dir (if you add users regularly) in a way that 
the configuration files for GNOME/KDE and other programs used are copied in 
and the permissions are set correctly. NOT server stuff though, since SAMBA 
doesn't support file permissions that well (if at all?).

> Verifying users:

Use SAMBA, our university uses it to authenticate users on public access 
machines. (basically log in as student into NT, logon script executes SAMBA
authentication, if it fails automatic logoff, simple and elegant. This way 
the users home dir on the email servers is also automounted.)

> File Services:
	See above...
> 	
> 	
> Collaboration:
> 	CVS: <http://cvw.mitre.org/>
	CVW ?!

> Security:
> 	SSH -- secure login to linux server

	TeraTerm or others can replace SSH, which alas is quite expensive 
	(the Win version).

ramin
-- 
Ramin Miraftabi			Assistant, Department of Computer Science
ramin@cs.joensuu.fi				    University of Joensuu
http://dawn.joensuu.fi/~ramin/				 Joensuu, Finland
PGP public key ID 9F7B3E51 			       (c) Copyright 1999