Lance Peterson wrote:
> Web Administration:
> A small web server like weblet might work if I can get it to set values as
> well as read values. Nothing fancy to start with. Not concerned with
> security, just fuction at the moment. Basically, what is the smallest linux
> web server I can get that will allow config script values to be read and set
> from a browser?
I think thttpd can do this; boa almost certainly (boa is on the Biggest
of the Tiny). Linux 2.4 introduced an http server in kernel space
(khttpd) but it serves static pages only. There is mathopd which might
be able to, as well as mini_httpd - you'll have to try and see. I've a
disk with all these available, or they may be available at
http://leaf.sourceforge.net
> Filtering:
> Squid -- too big. Need to look at (you mentioned junkbuster?) other
> options, if any, for keyword filtering.
Is it? Is it really? It'll give you a LOT of flexibility. With a 400M
hard drive and 64M of RAM you'd be cookin'.
> Stateful firewall:
> Thanks for the input, need to compile a 2.4 kernel to work with LRP.
Go to http://leaf.sourceforge.net and check out George Metz's
precompiled kernels...
> Trusted/Forbidden domains:
> This is a nice feature I have seen on some commercial firewalls. There are
> two lists, one is trusted domains like 'yahoo.com' or forbidden domains like
> 'sexkittens.com'. There is a flag set that says, allow all traffic except
> forbidden domains or allow only traffic to trusted domains. This is very
> nice if you have young kids and you allow their internal LAN IP to trusted
> domains only such as 'discovery.com' or 'math.com'. The forbidden list is
> great if you just want to filter out garbage like ad sites (maybe junkbuster
> does this??). This can probably be set under iptables, but I would rather
> just maintain a list for each that I can add/remove easily that is read each
> time the network is restarted and sets the appropriate rules. I saw a
> little script from Charles that was checking a list of known DNS spamming
> IP's and denying them and I thought maybe this could be adapted to read a
> list of trusted and forbidden domains.
Squid does this, and more. What you can allow and disallow (in access)
is tremendous. It's very flexible.
Also, you might consider that those commercial firewalls aren't running
in 16M of memory...
_______________________________________________
Leaf-user mailing list
[EMAIL PROTECTED]
http://lists.sourceforge.net/lists/listinfo/leaf-user
