nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpqe2p79z2nl0xkd2n0qy52wwvej2y3j8ps28nl4utfsw0apsnc586sn2sftd DNS was already mentioned (using pihole)  and i'd like to add nextdns.io to the list of useful tools to achieve content filtering. Great experience ootb for security,  privacy and pare...

nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpqe2p79z2nl0xkd2n0qy52wwvej2y3j8ps28nl4utfsw0apsnc586sn2sftd You may use the /etc/hosts file if you're wanting to block sites from the device itself, problem being you'd most likely have to manually maintain it / add it as a nixOS package and then...

what means public access computer? webserver or do they access over ssh? ufw and fail2ban maybe?

nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpqe2p79z2nl0xkd2n0qy52wwvej2y3j8ps28nl4utfsw0apsnc586sn2sftd Cannot be done. I wanted this for my kids at home. Impossible. As for public access: I would as a demo machine limit by whitelist to bbc news, github, Wikipedia, youtube, and sites endin...

nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpqe2p79z2nl0xkd2n0qy52wwvej2y3j8ps28nl4utfsw0apsnc586sn2sftd Might be best to do it with a router with family safety features for your use case.

nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpqe2p79z2nl0xkd2n0qy52wwvej2y3j8ps28nl4utfsw0apsnc586sn2sftd this should help https://search.nixos.org/options?channel=25.11&query=networking.stevenblack