Hi,
There are some limitations on line lengths, although you should be safe using values less than 1000 bytes in most cases. Depending on your exact requirements there may be alternate configurations we can suggest, or we can increase the limits if reasonable to do so.
User groups are usually stored in external authentication databases, not the actual list of news groups users have access to. These are defined in access.conf.
A typical authentication module would return something like "groups=staff,developers,dnews" for a user, and access.conf would define the actual news groups accessible to these users based on their name.
E.g.
*:read,post:groups=staff":netwin.staff.* *:read,post:groups=developers":netwin.developers.*:addonly *:read,post:groups=dnews":netwin.dnews:addonly
We do have some customers who have complicated rule sets for users involved in different projects. Provided the names of groups reflect this, groups for general access are named as such, and the access rules are properly thought out, you should not run in to any of the limits.
If you require specific advice on how to achieve your goals, please send us the details and we'll make some suggestions.
- Roydon L.
[EMAIL PROTECTED] wrote:
I'm currently starting to evaluation NNTP server replacements for our existing Netscape Collabra 3.52 server(s) here at work. Does DNEWS support LDAP Auth for both users AND groups? If so, is there a limit to the number of ACLs we can set? I heard from another DNEWS customer that the authentication is all in one string and there is a limit to length that was rather low?
Thanks,
Ralph C.
