[leafnode-list] Re: User authentication

Robert Grimm lists at news.robgri.de
Tue Sep 16 21:07:45 CEST 2008


Timo Neuvonen <timo-news at tee-en.net> wrote:
> As far as I know, the current released version of leafnode does not support 
> user authentication (require uid+password to be used at newsreader client).

> Is this feature possibly planned or already implemented in the new 
> leafnode-2 version that will be released some day?

,----[ man leafnode ]
| authenticate = METHOD
|        Require that NNTP clients authenticate themselves.
|
|        If METHOD is pam (on systems that support PAM), leafnode expects
|        to authenticate and  check  an  account,  the  service  name  is
|        "leafnode".  BEWARE: Allowing users to log in with their regular
|        system password is a security risk because the password is  sent
|        in  clear text! You had better do this only for users who cannot
|        log in (where the "shell" field in passwd is a statically linked
|        /sbin/nologin, for instance).
|
|        If  METHOD  is  internal,  leafnode  expects  a file /etc/leafn-
|        ode/users which lists users and their passwords.  The  file  has
|        one  line  per  user,  with  the user name (which cannot contain
|        spaces), then a colon (:), then the crypt(3) encrypted password.
|
|        To generate these lines, you can either use Apache’s htpasswd(8)
|        command if  it’s  installed  or  use  the  simple  Perl  program
|        tools/make_pass.pl,  for  example,  if  you  want  to add a user
|        enigma with  a password of break!me, type:
|
|        perl -wT tools/make_pass.pl ’enigma’ ’break!me’
|
|        and copy the resulting line to the /etc/leafnode/users file.
`----
from version 2.0.0.alpha20080904a

Never tried this though.

> Regards,
> Timo 

Rob
-- 
If all else fails, read the manual.




More information about the leafnode-list mailing list