log inhelp

 | 

  • If you are citizen of an European Union member nation, you may not use this service unless you are at least 16 years old.

  • You already know Dokkio is an AI-powered assistant to organize & manage your digital files & messages. Very soon, Dokkio will support Outlook as well as One Drive. Check it out today!

View
 

PubComputersSoftwareToInstall

Page history last edited by Thomas Stanley 14 years, 4 months ago

Software for Patron Computers

 

Software installed:

  • Windows XP Professional OS
  • Windows Steadystate
  • User Profile Hive Cleanup Service
  • Antivirus Software
    • We currently use Sophos Antivirus
  • Office Suite
    • We currently use the MSO provided by Techsoup
  • Photo Editor
    • We currently use Gimp
  • Drawing/Painting software
    • We currently use Inkscape
  • Publishing software
    • We currently use Scribus
  • -HTML Editor/Advanced Text Editor?
    • --NoteTab Light
    • --NVU
    • --HAPedit (Syntax highlighting and other features for dynamic web design using PHP and/or ASP)
  • All Media Formats Supported
    • --Windows Media Player up to date
    • --Real Alternative
    • --QuickTime
    • iTunes
    • VLC Media Player
  • -Mozilla Firefox as an alternative browser
  • -All Key Plugins for both IE and FF
    • --Flash (Now owned by Adobe, it plays Shockwave files as well.)
    • --Adobe Reader
      • Set NOT to update automatically
      • Consider using Foxit PDF plugin (free and more stable/faster)
    • --Java Runtime Environment (6.1)?
  • -Games
    • --Windows Games Accessible
    • --Free games installed
  • PDF-creating software
    • We currently use CutePDF (it is FREE for commercial use!!)
  • -7ZIP
  • -CD/DVD burning?
    • We currently use ISO Recorder (by Alex Feinman -- easy, fast, and free. Despite what the home page says, it will write DVD's in XP)
  • All Software fully installed and configured-no "license" screens coming up for patron
  • -.wps->.doc converter
  • -Filters for ODF files, MS Works 6-9, MSO 2007 Files
  • -Silverlight

  • GTK+

  • GhostScript

  • Magic School Bus and Living Books games for kids computers (from original Gates Grant).

 

 

System/public user settings:

  • Library logo as background
    • This is rather plain and does not fill the entire desktop; consider something more artistic/visually appealing that still includes the logo
  • Classic Start Menu
  • Personalized menus turned OFF.
  • http://acpl.lib.wy.us as homepage for both IE and FF
  • "HKEY_USERS.DEFAULTControl PanelDesktopScreenSaveTimeOut" should be set to 6000 or more; this will prevent the logon screensaver from interfering with updates.
  • Automatic updates (for all programs) and Hibernation should be turned off.
  • Power settings set to "Presentation."
  • Automatic shutdown every day at closing time. A warning should appear five minutes before shutdown.
    • Done as scheduled tasks
      • Use batch files placed in C:\ root directory
  • Automatic logon at startup
    • To configure auto login use the run command and type in "control userpasswords2" (remove quotes) and hit enter uncheck the box that says "users must enter a username and password to login to this computer"
  • Sound volume set to 4/10, appropriate for headphones.
  • Include PowerSchool, Wyoming Workforce, and UW Mail in browser favorites and desktop
  • All programs on desktop
  • Member of "PUBLIC" workgroup
  • Administrative username and password set to our standard settings
  • PUBLIC as workgroup
  • Patron username set as "all" with no password for adult computers, "child" with no password for childrens computers

  • Connection to wireless networks as needed

  • Desktop and Start Menu sorted alphabetically 

  • Connected to Printer
  • Black and white printer named "black&white"
    • Set as default printer
      • except on children's PCs-see note for that 

  • All programs preconfigured for the public user-no "nag screens" or autoupdates in the way.

  • Open every desktop shortcut to make sure the programs and shortcuts work

  • Experiment thoroughly with the public profile before locking it down.  It's much harder to change after when you have to unlock it, turn off disc protection etc. first and then turn it back on.

     

Kids art screensaver (optional) 

  • Art JPEGs from Kids art contest at library
  • Copy kidsart to the system profile's pictures folder (windowssystem32configsystemprofileMy DocumentsMy Pictures) You may have to create the folder.
  • Change the default logon screensaver to ssmypics.scr -- you can do this in the registry. The key to edit is HKEY_USERS.DEFAULTControl PanelDesktopSCRNSAVE.EXE

 

Special stuff for children's computers:

  • Create a folder called "books" in the Windows folder. Put the Living Books folders in there. (That's the only place these programs will run from under the Shared Computer Toolkit.)
  • Put the Magic School Bus stuff in the Program Files folder.
  • Install each of the Magic School Bus programs (there should be seven.)
  • Change TCP to use ScrubIT's DNS servers (http://scrubit.com), with OpenDNS' servers as a backup
    • This blocks porn
    • Our OpenDNS account is set up to do this custom, ScrubIt does this by default

In the 'catalog' account:

  • Make the CutePDF printer, not the black&white printer, the default printer for the patron user.  This prevents a lot of mistaken prints coming from those computers.

 

Security/Privacy:

  • Set browsers set to discard all private data (passwords, cookies, history, forms, cache, downloads)

Steadystate Settings:

  • Privacy Settings
    • Do not display user names in the Log On to Windows dialog box—YES.
    • Prevent locked or roaming user profiles that cannot be found on the computer from logging on—YES
    • Do not cache copies of locked or roaming user profiles for users who have previously logged on to this computer—YES
  • Security Settings
    • Remove the Administrator user name from the Welcome screen (requires pressing CTRL+ALT+DEL twice to log on to accounts not listed)—YES
    • Remove the Shut Down and Turn Off options from the Log On to Windows dialog box and Welcome Screen—NO
    • Do not allow Windows to compute and store passwords using LAN Manager—YES
    • Do not store user names or passwords used to log on to Windows Live ID (requires restart of the computer)—YES
    • Prevent users from creating folders and files in drive C:\—YES
    • Prevent users from opening Microsoft Office documents from within Internet Explorer—YES
    • Prevent write access to USB storage devices (requires restart of the computer)—NO
  • Other Settings
    • Turn on the Welcome screen—YES 
  • Schedule software updates- YES schedule TBD
    • We are working on getting an internal update server setup so we can set which updates to install manually
  • Protect the hard disc-YES
  • User settings
    • Lock the profile once it's all set
    • Medium settings EXCEPT
      • YES-Restrict access to C drive (or whatever the HD is)
      • NO-Prevent All Users items from showing in the Start Menu
      • NO-Prevent Printing in IE
      • NO-Prevent right-click in IE

 

 

Notes:

  • Word processor-specific computers are set up similarly, but with internet access disabled, and internet-specific programs not installed/not on desktop.
  • When "cloning" (Ghost etc.) discs, Disk Protection needs to be turned off, and the user probably needs to be unlocked, unless something has changed with Steadystate since last I heard, before doing the copy.   Otherwise, it won't come out usable, or the user will be messed up.

 

Securing Public Access PCs Without Shutting Out Users

-Interesting article

MaintainIT project for Public Access Computers

-Useful Library IT website

 

 

Comments (0)

You don't have permission to comment on this page.

Printable version