[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[leafnode-list] Re: ACLs

Martin <virenfang@xxxxxxxx> writes:

> without being involved in ACL things or something and probably without
> ever going to use something like this, nonetheless I want to suggest a
> little improvement. Before I already used INNs access-control system for
> my own home server. Today I use "listen on IP ..." and IP-based
> filtering to make sure, noone can abuse my leafnode.

Plus leafnode will in default settings only server computers in the
networks directly connected to your computer, not routed networks.

> That sounds alright. Furthermore I'd create a second file with i
> | user - passwd - IPs allowed(?) - group 
> if I had to implement things like that. IP based things could turn out a
> bit difficult, since IPs are not known to leafnode but only to inetd,
> iirc.

Leafnode already does retrieve the IP and log it. Check/correct
syslog.conf, reload syslogd and then connect and check the news log. :)

I'll review the rest of the suggestions as time permits and dust has

Matthias Andree
leafnode-list mailing list