|
||||||||||
Well, if you wanted to take my idea further, you could modify the hosts file to redirect m0n0wall's IP to www.msn.com (how annoying would that be!) or some other similar site. For those unfamiliar, here is a link on modifying host files: http://help.hardhathosting.com/question.php/11 I can think of a few weaknesses - by popping in a linux live CD, a person could mount the hard drive (linux can read, but not write NTFS), read the hosts file, then get to the router. But, even if they do this, they would still need to break the password.... Marten wrote: >hi all, > > >>>On this network I connect the Monowall LAN interface, enables DHCP and DNS >>>forwarding. I will also use the Captive portal function, forcing them to >>>log >>>on first. >>> >>> > > > >>Put m0n0wall's IP in Internet Explorer's restricted sites zone. It is >>under >>internet options --> security. >> >> > >on the clients? not very safe.....:) > >I use monowall between WAN LAN and DMZ (wireless community network of >Leiden, Holland) > >http access to monowall is not avialable on the (only on the LAN) > >Additional I use the pptp server to login from the wireless network >With firewalling it on possible to block unwished traffic. >I did not test the captive portal because 'll serve only known users. :) > >cheers, >Marten > > > > >--------------------------------------------------------------------- >To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch >For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch > > > > > |