(RADIATOR) Parental Controls Strategy

Hugh Irvine hugh at open.com.au
Wed Nov 3 19:48:43 CST 2004 

Hello Chris -

On 4 Nov 2004, at 10:09, Chris M wrote:

> Hi:
>
> I am toying with ways to implement parental control strategies when 
> surfing.
> What I thought of first was the following:
>
> 1. Let the user have multiple login names, like joeparent and skipkidee

OK - they should all belong to the same "group" which is returned in 
the Class attribute.

You would then check Simultaneous-Use using the "group" and Class 
attribute stored in the session database.

> 2. In radiator give the "safe" login name skipkidee a group that will 
> give
> it an address from a certain pool of addresses

Yes you can either do this with pools defined on the NAS or with pools 
defined in an AuthBy DYNADDRESS.

> 3. have the web port 80 proxied for that pool of addresses that 
> skipkidee is
> in to go through the "clean" proxy
>

You will need to set this up with filters or whatever.

> Things I want to know are:
>
> 1. How can I limit Simultaneous-use so that joeparent and skipkidee 
> cannot
> log in at the same time?
>

See above.

> 2. Is there a better way you folks have found to implement a feature 
> like
> this?
>

Anyone else?

> Ideally, I'd also figure out some log technique so that I can parse 
> the logs
> and report on the surfing habits of skipkidee to joeparent.
>

This is outside the scope of Radiator - you will need something like 
Cisco netflow and/or parse the proxy logs.

regards

Hugh


> Thanks,
> Chris
>
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
>

NB: have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.

--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list