On Sat, 27 Jan 2001 [EMAIL PROTECTED] wrote:
> hello pluggers!
>
> how can i deny/prevent other users from dialing-in into my server?
> radiusd-cistron is running as my auth/acctg server package. I have
> tried changing shells (/dev/null or /bin/nologin) but wasn't
> successful. The user can still log via dial-up.
>
> sample scenario:
>
> Primary Account: zeej
>
> -> this is the valid login name when connecting to the server via dial-up.
>
> Secondary Account: zeejtech -> this is the secondary/supplementary
> account that i would like to prevent from logging in to my server when
> used by the client zeej.
>
>
> However, the supplementary account should be able to log in to my
> pop/smtp server and be able to download and/or send mail out.
>
IMHO, you should set different groups for primary and seconday accounts.
let's say set primary accounts to have a gid of 100 and the secondary to
be 150 . If this is set, it shouldn't be hard to configure radius to block
users belonging to group 150.
hth,
-mark
*************************************************************************
Mark Anthony J. Mercado [EMAIL PROTECTED]
Laguna Internet, Incorporated
Rm 404 Vega Centre, Lopez Avenue, Los Banos, Laguna, Philippines 4030
Ph. 63 49 536.0085 Fax. 63 49 536.0067
*************************************************************************
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
