From Newsgroup: alt.os.linux.ubuntu

The subject says it all, so how would this be done in 22.04? I just
want the one wired connection with no way to add another and bypass the existing connection. Thank you.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: alt.os.linux.ubuntu

Bill Abers wrote:

The subject says it all, so how would this be done in 22.04?  I just
want the one wired connection with no way to add another and bypass the existing connection.  Thank you.

Not sure what you are trying to do here, do you meant only allow the
wire connection and disable any wifi adapter?

man rfkill

For the wired connection I guess you could uninstall NetworkManager and
then set your wired connection with static settings with netplan. IF the
user does not have sudo privileges the settings cannot be changed by
that user. All just WAG. Need more info on what you are trying to
accomplish.
--
Take care,

Jonathan
-------------------
LITTLE WORKS STUDIO
http://www.LittleWorksStudio.com
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: alt.os.linux.ubuntu

On 6/6/25 5:31 PM, Jonathan N. Little wrote:

Bill Abers wrote:

The subject says it all, so how would this be done in 22.04?  I just
want the one wired connection with no way to add another and bypass the
existing connection.  Thank you.

Not sure what you are trying to do here, do you meant only allow the
wire connection and disable any wifi adapter?

man rfkill

For the wired connection I guess you could uninstall NetworkManager and
then set your wired connection with static settings with netplan. IF the
user does not have sudo privileges the settings cannot be changed by
that user. All just WAG. Need more info on what you are trying to
accomplish.

On my screen, if I go up and click on the connection icon at the top
right, I am presented with

wired connected
balanced
settings
lock
power off/ log out

If I then choose "settings" from this, a new box opens with "Network" at
the top of the list and highlighted.

I have an active "Wired" connection normally for Internet.

I want to be able to prevent its removal or manipulation. I also want
to prevent the ability to click the + sign and add a new profile, which
could easily bypass my default settings.

I *think* I want to modify the PolicyKit file so that these three
settings are changed from "yes" to "auth_admin" but not sure:

org.freedesktop.NetworkManager.settings.modify.own org.freedesktop.NetworkManager.network-control org.freedesktop.NetworkManager.enable-disable-network

I don't usually fool with Ubuntu's files because I have messed them up
in the past. IF the aforementioned would be the correct course of
action, how do I go about saving the existing PolicyKit file and am I
changing to "auth_admin" or my name- "bill"- since I am the
administrator? Also, is it possible to use a different password from
the one used for the system?

Hope that's clear enough and thanks in advance.




--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: alt.os.linux.ubuntu

On 6/6/25 6:51 PM, Bill Abers wrote:

On 6/6/25 5:31 PM, Jonathan N. Little wrote:

Bill Abers wrote:

The subject says it all, so how would this be done in 22.04?  I just
want the one wired connection with no way to add another and bypass the
existing connection.  Thank you.

Not sure what you are trying to do here, do you meant only allow the
wire connection and disable any wifi adapter?

man rfkill

For the wired connection I guess you could uninstall NetworkManager and
then set your wired connection with static settings with netplan. IF the
user does not have sudo privileges the settings cannot be changed by
that user. All just WAG. Need more info on what you are trying to
accomplish.

On my screen, if I go up and click on the connection icon at the top
right, I am presented with

wired connected
balanced
settings
lock
power off/ log out

If I then choose "settings" from this, a new box opens with "Network" at
the top of the list and highlighted.

I have an active "Wired" connection normally for Internet.

I want to be able to prevent its removal or manipulation.  I also want
to prevent the ability to click the + sign  and add a new profile, which could easily bypass my default settings.

I *think* I want to modify the PolicyKit file so that these three
settings are changed from "yes" to "auth_admin" but not sure:

org.freedesktop.NetworkManager.settings.modify.own org.freedesktop.NetworkManager.network-control org.freedesktop.NetworkManager.enable-disable-network

I don't usually fool with Ubuntu's files because I have messed them up
in the past.  IF the aforementioned would be the correct course of
action, how do I go about saving the existing PolicyKit file and am I changing to "auth_admin" or my name- "bill"- since I am the
administrator?  Also, is it possible to use a different password from
the one used for the system?

Hope that's clear enough and thanks in advance.

Well, the aforementioned works almost well enough. Now, I can still add
a new profile by clicking + BUT to switch from my default to that new
profile, I have to provide the password. This could work IF there was a
way to change the password from the admin default to one specific to
creating new connection profiles. Any way to do this in policies or
another way?
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: alt.os.linux.ubuntu

Bill Abers wrote:

On 6/6/25 6:51 PM, Bill Abers wrote:

On 6/6/25 5:31 PM, Jonathan N. Little wrote:

Bill Abers wrote:

The subject says it all, so how would this be done in 22.04?  I just
want the one wired connection with no way to add another and bypass the >>>> existing connection.  Thank you.

Not sure what you are trying to do here, do you meant only allow the
wire connection and disable any wifi adapter?

man rfkill

For the wired connection I guess you could uninstall NetworkManager and
then set your wired connection with static settings with netplan. IF the >>> user does not have sudo privileges the settings cannot be changed by
that user. All just WAG. Need more info on what you are trying to
accomplish.

On my screen, if I go up and click on the connection icon at the top
right, I am presented with

wired connected
balanced
settings
lock
power off/ log out

If I then choose "settings" from this, a new box opens with "Network"
at the top of the list and highlighted.

I have an active "Wired" connection normally for Internet.

I want to be able to prevent its removal or manipulation.  I also want
to prevent the ability to click the + sign  and add a new profile,
which could easily bypass my default settings.

I *think* I want to modify the PolicyKit file so that these three
settings are changed from "yes" to "auth_admin" but not sure:

org.freedesktop.NetworkManager.settings.modify.own
org.freedesktop.NetworkManager.network-control
org.freedesktop.NetworkManager.enable-disable-network

I don't usually fool with Ubuntu's files because I have messed them up
in the past.  IF the aforementioned would be the correct course of
action, how do I go about saving the existing PolicyKit file and am I
changing to "auth_admin" or my name- "bill"- since I am the
administrator?  Also, is it possible to use a different password from
the one used for the system?

Hope that's clear enough and thanks in advance.

Well, the aforementioned works almost well enough.  Now, I can still add
a new profile by clicking + BUT to switch from my default to that new profile, I have to provide the password.  This could work IF there was a
way to change the password from the admin default to one specific to
creating new connection profiles.  Any way to do this in policies or
another way?

Simplest way is to great a new 'standard' user without sudo privileges
and use that non-admin account as your daily driver and you will not be
able to inadvertently change the setting.

Just curious, what setting are afraid will change? Most people connect
to router via DHCP where the router sends you the correct settings to
connect to the network. With Ethernet it is drop-dead simple compared to
WiFi with SSID and password and security protocols and all.

With Ethernet, clicking the plus symbol if physically connected to the
same router will give to basically the same settings. Maybe a different
IP but possibly not because the cable is connected to the same interface
and the MAC address is cached by the DHCP server and would probably give
you the cached IP. Routing and DNS would not change, unless your
original connection profile was manually configured to something custom
and not DHCP.
--
Take care,

Jonathan
-------------------
LITTLE WORKS STUDIO
http://www.LittleWorksStudio.com
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: alt.os.linux.ubuntu

On 6/6/25 10:05 PM, Jonathan N. Little wrote:

Bill Abers wrote:

On 6/6/25 6:51 PM, Bill Abers wrote:

On 6/6/25 5:31 PM, Jonathan N. Little wrote:

Bill Abers wrote:

The subject says it all, so how would this be done in 22.04?  I just >>>>> want the one wired connection with no way to add another and bypass the >>>>> existing connection.  Thank you.

Not sure what you are trying to do here, do you meant only allow the
wire connection and disable any wifi adapter?

man rfkill

For the wired connection I guess you could uninstall NetworkManager and >>>> then set your wired connection with static settings with netplan. IF the >>>> user does not have sudo privileges the settings cannot be changed by
that user. All just WAG. Need more info on what you are trying to
accomplish.

On my screen, if I go up and click on the connection icon at the top
right, I am presented with

wired connected
balanced
settings
lock
power off/ log out

If I then choose "settings" from this, a new box opens with "Network"
at the top of the list and highlighted.

I have an active "Wired" connection normally for Internet.

I want to be able to prevent its removal or manipulation.  I also want
to prevent the ability to click the + sign  and add a new profile,
which could easily bypass my default settings.

I *think* I want to modify the PolicyKit file so that these three
settings are changed from "yes" to "auth_admin" but not sure:

org.freedesktop.NetworkManager.settings.modify.own
org.freedesktop.NetworkManager.network-control
org.freedesktop.NetworkManager.enable-disable-network

I don't usually fool with Ubuntu's files because I have messed them up
in the past.  IF the aforementioned would be the correct course of
action, how do I go about saving the existing PolicyKit file and am I
changing to "auth_admin" or my name- "bill"- since I am the
administrator?  Also, is it possible to use a different password from
the one used for the system?

Hope that's clear enough and thanks in advance.

Well, the aforementioned works almost well enough.  Now, I can still add
a new profile by clicking + BUT to switch from my default to that new
profile, I have to provide the password.  This could work IF there was a
way to change the password from the admin default to one specific to
creating new connection profiles.  Any way to do this in policies or
another way?

Simplest way is to great a new 'standard' user without sudo privileges
and use that non-admin account as your daily driver and you will not be
able to inadvertently change the setting.

Just curious, what setting are afraid will change? Most people connect
to router via DHCP where the router sends you the correct settings to
connect to the network. With Ethernet it is drop-dead simple compared to
WiFi with SSID and password and security protocols and all.

By manipulating the PolicyKit file, I was afraid something wouldn't work correctly when I was finished or that I would have inadvertently locked
myself out of my new settings. Has happened before, but not with
PolicyKit.

With Ethernet, clicking the plus symbol if physically connected to the
same router will give to basically the same settings. Maybe a different
IP but possibly not because the cable is connected to the same interface
and the MAC address is cached by the DHCP server and would probably give
you the cached IP. Routing and DNS would not change, unless your
original connection profile was manually configured to something custom
and not DHCP.

Although I didn't say this at the beginning, the point of all of this
was to maintain a "family filter" DNS no matter what. Before I allowed
anyone else access to the PC, to my surprise, I found that I could
easily make a new connection profile with "auto" DNS settings and bypass
the existing filter completely. Modifying PolicyKit helped somewhat
because, although a new connection profile could be made, to actually
try using it would have needed to know the password.

The ultimate solution came to me last night: to simply use the desired
DNS in my router, so no matter what was attempted on the PC, the DNS
would not change. This worked and I changed the router password. Now,
no matter what connection profile is tried on the PC, the family filter
DNS remains in place.

I seldom have to reset my router IP and good thing I don't because the
new password is close to 50 characters long-- which is the point as well.

I'm sure those in better know could probably swap out routers to bypass
the filters, but not without my knowledge.

Thanks again for your suggestions. I find that AI pops up with its suggestions these days when I goggle these things, but I don't fully
trust it as it has been known to be wrong or not understand what I'm
seeking.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: alt.os.linux.ubuntu

Bill Abers wrote:

The ultimate solution came to me last night: to simply use the desired
DNS in my router, so no matter what was attempted on the PC, the DNS
would not change.  This worked and I changed the router password.  Now,
no matter what connection profile is tried on the PC, the family filter
DNS remains in place.

I seldom have to reset my router IP and good thing I don't because the
new password is close to 50 characters long-- which is the point as well.

I'm sure those in better know could probably swap out routers to bypass
the filters, but not without my knowledge.

Thanks again for your suggestions.  I find that AI pops up with its suggestions these days when I goggle these things, but I don't fully
trust it as it has been known to be wrong or not understand what I'm
seeking.

Just be aware you must disable DoH (DNS over HTTPS) in your browser
which is now enabled by default in Firefox, (I think in Chrome too)
which will bypass your local DNS server settings. Essentially nullifying
your family filter.
--
Take care,

Jonathan
-------------------
LITTLE WORKS STUDIO
http://www.LittleWorksStudio.com
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: alt.os.linux.ubuntu

On Sat, 7 Jun 2025 12:12:08 -0400, Bill Abers wrote:

... or that I would have inadvertently locked myself out of my new
settings. Has happened before, but not with PolicyKit.

If you lock yourself out of sufficient privileges to fix a problem with
your installation, there’s always the option of booting the machine with a copy of SystemRescue on a USB stick. That should let you get in and fix things.

I always keep a copy of SystemRescue handy. ;)
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: alt.os.linux.ubuntu

On 6/7/25 8:31 PM, Jonathan N. Little wrote:

Bill Abers wrote:

The ultimate solution came to me last night: to simply use the desired
DNS in my router, so no matter what was attempted on the PC, the DNS
would not change.  This worked and I changed the router password.  Now,
no matter what connection profile is tried on the PC, the family filter
DNS remains in place.

I seldom have to reset my router IP and good thing I don't because the
new password is close to 50 characters long-- which is the point as well.

I'm sure those in better know could probably swap out routers to bypass
the filters, but not without my knowledge.

Thanks again for your suggestions.  I find that AI pops up with its
suggestions these days when I goggle these things, but I don't fully
trust it as it has been known to be wrong or not understand what I'm
seeking.

Just be aware you must disable DoH (DNS over HTTPS) in your browser
which is now enabled by default in Firefox, (I think in Chrome too)
which will bypass your local DNS server settings. Essentially nullifying
your family filter.

Thanks. I wasn't aware of this, but checked and it already seemed to be disabled (maybe because I had already been running "strict" settings?). Anyway, something to keep in mind for the future.

I will say that the family filter, 1.1.1.3, isn't perfect and can still
let some inappropriate material through. On reddit, for example,
allowing NSFW there isn't filtered by the family filter. So additional
add-on filters are used in Firefox. And another ad-on that blocks
websites based on key words. Then I had to modify policy files to be
sure the ad-ons couldn't be disabled, uninstalled, or modified. Seems
like the work never ends to keep the bad stuff away.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: alt.os.linux.ubuntu

On 6/7/25 9:02 PM, Lawrence D'Oliveiro wrote:

On Sat, 7 Jun 2025 12:12:08 -0400, Bill Abers wrote:

... or that I would have inadvertently locked myself out of my new
settings. Has happened before, but not with PolicyKit.

If you lock yourself out of sufficient privileges to fix a problem with
your installation, there’s always the option of booting the machine with a copy of SystemRescue on a USB stick. That should let you get in and fix things.

I always keep a copy of SystemRescue handy. ;)

Although I do have an older version of Ubuntu on DVD and I believe I
could access the current system with it, I appreciate the SystemRescue
tip.
--- Synchronet 3.21a-Linux NewsLink 1.2