<H5>Subject: Re: Pressler Markup & Report From: "S. Finer" <xerxes@clark.net> Date: Wed, 12 Apr 1995 06:03:01 -0400 (EDT)</H5>
<A HREF=index.php><H5>How the Web Was Won</H5></A>
<A NAME=db/020382.html>Subject: Re: Pressler Markup & Report</A>
From: "S. Finer" <xerxes@clark.net>
Date: Wed, 12 Apr 1995 06:03:01 -0400 (EDT)
<HR><PRE>
In-Reply-To: <Pine.SUN.3.91.950410220053.13313O-100000@cnj.digex.net>
Message-Id: <Pine.SOL.3.91.950412055250.3155D-100000@clark.net>
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Status: RO
X-Status: A


On Mon, 10 Apr 1995, R Ballard wrote:

> You would have to disable telnet, FTP, Web Browsers, and News.  You would 
> also have to disable sockets programming (since the kid can get telnet 
> anywhere).
> 
> What is needed is clients that request interactive password entry at 
> start-up and send the authentication information to each server using a 
> real-time encrypted key (Kerberos) validated by a third party server.

This is doable....but would the server need to be involved, ABSOLUTELY? 
I'm not so sure your could not get decent lock-out capability on a purely 
local basis.

 
> This authentication software is widely available and can be enabled on 
> most clients and servers with little effort.  By allowing the parents to 
> sent the "Lockout" to a third-party server, the "Porno Board" can protect 
> the children by using the authentication which will Identify the kid as a 
> minor.

IC- and agree, but can't much of this functionality be accomplished 
locally ONLY?

> > As to kids who can break the lock.....some will be able to do so....but 
> > not many.  Most will not try very long if the frustration level is high.  
> > Just lock out all telnet capability without a separate password, that the 
> > parent DOES NEED TO SECURE.  gotta go
> 
> Let me just correct one thing.  You would have to "Completely Disable all 
> TCP connects going out of the box" with the exception of the "Protected 
> client which would go directly to a Fire-wall host exclusively.  

Well, ok, but this can be done.  BUT suppose the protected client just 
went to the regular server the provider made available to everyone. But 
the protected client recognizes specified smut sites via a continuously 
updated file, and does not allow the kid to direct the client to go 
there. The lock is local.  Orgs. would update the spec file to the 
standards the parent expects.  The parents would just need to keep the 
lock-out client by-pass password secure.  


Any 
> internal solution can be defeated with two floppy disks.

Hmmm.....ANY?  I'm not doubting you....just do not see it.  

From owner-online-news@marketplace.com Wed Apr 12 10:44:17 1995
Received: from marketplace.com by cnj.digex.net with SMTP id AA26516
  (5.67b8/IDA-1.5 for <rballard@cnj.digex.net>); Wed, 12 Apr 1995 10:44:13 -0400
Received: (from majordom@localhost) by marketplace.com (8.6.10/8.6.10) id EAA29635 for online-news-outgoing; Wed, 12 Apr 1995 04:29:10 -0600
Received: from clark.net (xerxes@clark.net [168.143.0.7]) by marketplace.com (8.6.10/8.6.10) with ESMTP id EAA29630 for <online-news@marketplace.com>; Wed, 12 Apr 1995 04:29:04 -0600
Received: (xerxes@localhost) by clark.net (8.6.12/8.6.5) id GAA10659; Wed, 12 Apr 1995 06:31:13 -0400
</PRE>