Is there a way to lockdown the built in browser on IGEL OS so it can only access two specific sites?


Is there a way to lockdown the built in browser on IGEL OS so it can only access two specific sites? i.e. Allow access to example.com example.com and example2.com example2.com but disallow access to everything else? I am hoping to do it at the IGEL OS level, and not at the network firewall level.


hosts file maybe?


Yeah – that would work I think.

Thanks


but, that might be a lot of work getting other things to work properly though


NetworkHosts would be the hostfile way; but I would suggest to setup a Proxy (free ones like Squid do a more than decent job) instead.


Another option would be to tie into your company’s security stack for Proxy. Such as Zscaler — www.zscaler.com/resources/data-sheets/zscaler-internet-access.pdf


would something like this work? support.mozilla.org/en-US/questions/939601

On a support call with Citrix right now (for over 3 hours), so I can’t test.

basically removing the navigation bar.

then either use bookmarks or desktop shortcuts for those sites


@member yes, that would work, but the user might reach other sites by clicking around weblinks like: Share with Facebook, find us on Google or … the Navigation Bar can be removed by a profile, but that‘s just step 1 IMHO.

@member what are you trying to do exactly with that behavior?


I once tightened Mozilla down as a kiosk, but that’s long ago.

Isn’t there a plugin that only allows white listet sites?


We need to provide a secure desktop PC for users to be able to login to a website to download their paystubs, which is why the need to only allow the one site.

@member Good luck with the Citrix call. They have been no so great lately.


Well then you could go for Browser profile like described here:

igelcommunity.slack.com/archives/C8GP9JHQE/p1551786208066400?thread_ts=1551229422.044800&channel=C8GP9JHQE&message_ts=1551786208.066400 igelcommunity.slack.com/archives/C8GP9JHQE/p1551786208066400?thread_ts=1551229422.044800&channel=C8GP9JHQE&message_ts=1551786208.066400

And combined with a Profile like below that restart the Firefox after idle time. Not to 100% secure but easier than installing a Proxy / Extensions to FF / Whitelisting😄


Another solution might also be to install an add-on to block sites


Done with Citrix call after 4 hours and after 2 tech and 3 programmers, they figured out the issue and fixed it. Still waiting to hear what the issue was.


@member respect!! 👍


@member you could add a additional layer of configuring a proxy for Firefox, that points to nowhere, and select to bypass proxy for your 2 sites


Thanks for everyones help. We decided to go the proxy route.

Continue reading and comment on the thread ‘Is there a way to lockdown the built in browser on IGEL OS so it can only access two specific sites? ‘.  Not a member? Join Here!

Learn more, search the IGEL Knowledge Base



Ask a question or comment on the above messasge thread?

Join or log in to the IGEL Community to ask us anything and meet other IGEL customers, partners, and EUC enthusiasts.

Submit a question, or Join Today!


Popular Message Threads


Categories & Tags: