[email protected] wrote:
Hello, just pondering what I need to enable/disable to get the following to work. I would like to restrict access to my news server via people's ip address, however they don't have static address's. Is it possible to use say a dynamic dns name they use (eg something from www.dyndns.org) so I wouldn't have to just blindly allow their ips ip range in, or update it each time they get a new ip ?
currently I have the Lookup DNS names of clients disabled and users are required to login, is there an option or a way to enable dnews to preform a dns lookup of a hostname lets say my user name is fred, and his dynamic dns is fred.dyndns.org. Can dnews do a dns on fred.dyndns.org get the ip address then compare it to fred's ip he is connecting from ? I know this wont scale well but i will only have a hand full of people using it anyway, so im not fuss'd if i had to do a cronjob or allow dnews to do a dns dump of all the hostnames on the access config file every hour or so.
or i guess another way to do it, would be to allow anyone to connect, let them put in their username, when they do that dnews then looks at the access file and see's what hostname is associated with it , does the dns lookup to compare it to the incomming connection, if there is no match, drop the connection, if there is a match then allow the client to send the password, if the password is good allow the connection, else drop it as a bad password.
of course im guessing either way would require some changes or use of hidden features in dnews ? the later would be better to scale...
Cheers.
My gut feeling is you should be using user/password authentication instead, is there some reason you don't wish to use user/pass authentication ?
ChrihsP.
