194 lines
3.2 KiB
HTML
194 lines
3.2 KiB
HTML
<HTML
|
|
><HEAD
|
|
><TITLE
|
|
>NNTP Authorization</TITLE
|
|
><META
|
|
NAME="GENERATOR"
|
|
CONTENT="Modular DocBook HTML Stylesheet Version 1.57"><LINK
|
|
REL="HOME"
|
|
TITLE="Linux Network Administrators Guide"
|
|
HREF="index.html"><LINK
|
|
REL="UP"
|
|
TITLE="NNTP and thenntpd Daemon"
|
|
HREF="x-087-2-nntp.html"><LINK
|
|
REL="PREVIOUS"
|
|
TITLE="Restricting NNTP Access"
|
|
HREF="x-087-2-nntp.access.html"><LINK
|
|
REL="NEXT"
|
|
TITLE="nntpd Interaction with C News"
|
|
HREF="x-087-2-nntp.interact.html"></HEAD
|
|
><BODY
|
|
CLASS="SECT1"
|
|
BGCOLOR="#FFFFFF"
|
|
TEXT="#000000"
|
|
LINK="#0000FF"
|
|
VLINK="#840084"
|
|
ALINK="#0000FF"
|
|
><DIV
|
|
CLASS="NAVHEADER"
|
|
><TABLE
|
|
WIDTH="100%"
|
|
BORDER="0"
|
|
CELLPADDING="0"
|
|
CELLSPACING="0"
|
|
><TR
|
|
><TH
|
|
COLSPAN="3"
|
|
ALIGN="center"
|
|
>Linux Network Administrators Guide</TH
|
|
></TR
|
|
><TR
|
|
><TD
|
|
WIDTH="10%"
|
|
ALIGN="left"
|
|
VALIGN="bottom"
|
|
><A
|
|
HREF="x-087-2-nntp.access.html"
|
|
>Prev</A
|
|
></TD
|
|
><TD
|
|
WIDTH="80%"
|
|
ALIGN="center"
|
|
VALIGN="bottom"
|
|
>Chapter 22. NNTP and thenntpd Daemon</TD
|
|
><TD
|
|
WIDTH="10%"
|
|
ALIGN="right"
|
|
VALIGN="bottom"
|
|
><A
|
|
HREF="x-087-2-nntp.interact.html"
|
|
>Next</A
|
|
></TD
|
|
></TR
|
|
></TABLE
|
|
><HR
|
|
ALIGN="LEFT"
|
|
WIDTH="100%"></DIV
|
|
><DIV
|
|
CLASS="SECT1"
|
|
><H1
|
|
CLASS="SECT1"
|
|
><A
|
|
NAME="X-087-2-NNTP.AUTHORIZE"
|
|
>22.4. NNTP Authorization</A
|
|
></H1
|
|
><P
|
|
>
|
|
|
|
|
|
The <B
|
|
CLASS="COMMAND"
|
|
>nntpd</B
|
|
> daemon provides a simple authorization scheme.
|
|
If you capitalize any of the access tokens in the
|
|
<TT
|
|
CLASS="FILENAME"
|
|
>nntp_access</TT
|
|
> file, <B
|
|
CLASS="COMMAND"
|
|
>nntpd</B
|
|
> requires
|
|
authorization from the client for the respective operation. For instance,
|
|
when specifying a permission of <SPAN
|
|
CLASS="SYSTEMITEM"
|
|
>Xfer</SPAN
|
|
> or
|
|
<SPAN
|
|
CLASS="SYSTEMITEM"
|
|
>XFER</SPAN
|
|
>, (as opposed to
|
|
<SPAN
|
|
CLASS="SYSTEMITEM"
|
|
>xfer</SPAN
|
|
>), <B
|
|
CLASS="COMMAND"
|
|
>nntpd</B
|
|
> will not
|
|
let the client transfer articles to your site unless it passes authorization.</P
|
|
><P
|
|
>The authorization procedure is implemented by means of a new NNTP command
|
|
named <B
|
|
CLASS="COMMAND"
|
|
>AUTHINFO</B
|
|
>. Using this command, the
|
|
client transmits a username and a password to the NNTP server.
|
|
<B
|
|
CLASS="COMMAND"
|
|
>nntpd</B
|
|
> validates them by checking them against the
|
|
<TT
|
|
CLASS="FILENAME"
|
|
>/etc/passwd</TT
|
|
> database and verifies that the user belongs to
|
|
the <SPAN
|
|
CLASS="SYSTEMITEM"
|
|
>nntp</SPAN
|
|
> group.</P
|
|
><P
|
|
>The current implementation of NNTP authorization is only experimental
|
|
and has therefore not been implemented very portably. The result of
|
|
this is that it works only with plain-style password databases; shadow
|
|
passwords are not recognized. If you are compiling from source and
|
|
have the PAM package installed, the password check is fairly simple to
|
|
change.</P
|
|
></DIV
|
|
><DIV
|
|
CLASS="NAVFOOTER"
|
|
><HR
|
|
ALIGN="LEFT"
|
|
WIDTH="100%"><TABLE
|
|
WIDTH="100%"
|
|
BORDER="0"
|
|
CELLPADDING="0"
|
|
CELLSPACING="0"
|
|
><TR
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="left"
|
|
VALIGN="top"
|
|
><A
|
|
HREF="x-087-2-nntp.access.html"
|
|
>Prev</A
|
|
></TD
|
|
><TD
|
|
WIDTH="34%"
|
|
ALIGN="center"
|
|
VALIGN="top"
|
|
><A
|
|
HREF="index.html"
|
|
>Home</A
|
|
></TD
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="right"
|
|
VALIGN="top"
|
|
><A
|
|
HREF="x-087-2-nntp.interact.html"
|
|
>Next</A
|
|
></TD
|
|
></TR
|
|
><TR
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="left"
|
|
VALIGN="top"
|
|
>Restricting NNTP Access</TD
|
|
><TD
|
|
WIDTH="34%"
|
|
ALIGN="center"
|
|
VALIGN="top"
|
|
><A
|
|
HREF="x-087-2-nntp.html"
|
|
>Up</A
|
|
></TD
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="right"
|
|
VALIGN="top"
|
|
>nntpd Interaction with C News</TD
|
|
></TR
|
|
></TABLE
|
|
></DIV
|
|
></BODY
|
|
></HTML
|
|
> |