I must admit I was a bit surprised by this on one hand, and not at all surprised on the other. When you understand how virtualization works, it’s easy to think “wow, that creates a nice black box, nothing could ever get out of there automatically to the host computer, or even know the host […]

Our new youth facility now has a four-computer internet café. I’ve already written twice about my plans and research leading up to implementation, specifically about computer lockdown software. A couple of weeks ago, I mentioned briefly that we had changed course and decided to use Microsoft Windows SteadyState as our lockdown software of choice, mainly due to…

Mike Mayfield over at Pleasant Valley Baptist Church IT (“pvcbit”) posted a question about VPN remote access permissions. I wrote a blog post in March with a little bit of information on this relating to the Microsoft ISA 2004 firewall, but we’re actually using a combination of services for remote access right now (I mentioned […]

I’ve been asked to post some information on how I implemented 802.1x authentication in our wireless network. This setup involved a lot of experimentation, and I’m not completely done although I have a working solution. This post will be a high-level overview of the process. I will post some additional information when I have time […]

We just released our Free Wi-Fi without much hurrah this week(end) (I’m out of town, so I hope no one needs help!). The big test will be Monday and Tuesday (when I will be in town) with us hosting our Indiana District Council. Right now, content filtering on the public wireless is being provided by […]

Is anyone else using 802.1x for wired authentication? I’ve got it working for wireless networking, which is pretty cool. But what about wired ports? I don’t necessarily want to go to the trouble of locking down every port on campus with 802.1x. Or do I? But public ports are what worry me. For now, the […]

The SANS Internet Storm Center has been tracking a 0-day exploit out there compromising Windows DNS servers that are live on the Internet. I’d say this is a good reason to use Linux for such services, but that’s an argument for another day; there have certainly been DNS exploits on Linux DNS server software as […]

At the end of last month, I posted about locking down the public computers in our new youth lobby. I’ve found a new possible software solution, that seems to be comparable to Faronics DeepFreeze in some respects, but may have some additional useful features. This one is from a company called Fortres Grand and there […]

We are placing four computers in our new youth facility for web browsing, homework help, etc., and I’m looking at options for securing the computers.  The software I know of (but have never used) is called Faronics DeepFreeze.  I thought I heard about a better alternative to this software on the Casting From the Server […]

I have a problem. Hardware hasn’t really been tracked here before, and I’d like to start doing that. At least at the level of desktop and/or LCD monitor, the two most costly and most likely to be “lost” items. I’ve never really found a solution for this that I like. For one, I like free, […]