Re: Limiting access to website ???

On Sat, 2003-10-04 at 18:34, Michael D Schleif wrote: [...] > While on this subject, what do you recommend for us to become a CA? > `apt-cache search certificate' shows only pyca -- is that adequate? > What are the considerations for becoming a CA? I just use openssl for our ca, I have written a f

Re: Limiting access to website ???

Dave Carrigan <[EMAIL PROTECTED]> [2003:10:04:15:15:21-0700] scribed: > On Sat, Oct 04, 2003 at 04:25:57PM -0500, Michael D Schleif wrote: > > > OK, this section is what I need -- thank you: > > > > > > > > Correct me if I am wrong; but, t

Re: Limiting access to website ???

On Sat, Oct 04, 2003 at 04:25:57PM -0500, Michael D Schleif wrote: > OK, this section is what I need -- thank you: > > > > Correct me if I am wrong; but, this is the process? > > [1] One (1) Certificate per client/browser authenticates *b

Re: Limiting access to website ???

Frank Gevaerts <[EMAIL PROTECTED]> [2003:10:04:22:25:54+0200] scribed: > On Sat, Oct 04, 2003 at 02:56:14PM -0500, Michael D Schleif wrote: > > As I responded to Aaron's message, we are looking for some kind of > > passive authentication, like an SSL Certificate. > > > > We do not want to have to

Re: Limiting access to website ???

On Sat, Oct 04, 2003 at 02:56:14PM -0500, Michael D Schleif wrote: > As I responded to Aaron's message, we are looking for some kind of > passive authentication, like an SSL Certificate. > > We do not want to have to rely on humans remembering another > username/password, especially since the web

Re: Limiting access to website ???

On Sat, Oct 04, 2003 at 02:56:14PM -0500, Michael D Schleif wrote: > What am I missing? > > I have read this: > > > > As I responded to Aaron's message, we are looking for some kind of > passive authentication, like an SSL Certificate. The mod_

Re: Limiting access to website ???

Dave Carrigan <[EMAIL PROTECTED]> [2003:10:04:12:31:02-0700] scribed: > On Sat, Oct 04, 2003 at 12:50:39PM -0500, Michael D Schleif wrote: > > We are working on a web-based application. It will use mod_ssl to > > secure transactions. > > > > We want to limit access to the application. Yes, we ha

Re: Limiting access to website ???

Aaron <[EMAIL PROTECTED]> [2003:10:04:15:02:38-0400] scribed: > Michael D Schleif <[EMAIL PROTECTED]> said, > > We are working on a web-based application. It will use mod_ssl to > > secure transactions. > > > > We want to limit access to the application. Yes, we have > > username/password authen

Re: Limiting access to website ???

On Sat, Oct 04, 2003 at 12:50:39PM -0500, Michael D Schleif wrote: > We are working on a web-based application. It will use mod_ssl to > secure transactions. > > We want to limit access to the application. Yes, we have > username/password authentication; but, we are also considering > host-based

Re: Limiting access to website ???

Michael D Schleif <[EMAIL PROTECTED]> said, > We are working on a web-based application. It will use mod_ssl to > secure transactions. > > We want to limit access to the application. Yes, we have > username/password authentication; but, we are also considering > host-based limits. > > Can this

Limiting access to website ???

We are working on a web-based application. It will use mod_ssl to secure transactions. We want to limit access to the application. Yes, we have username/password authentication; but, we are also considering host-based limits. Can this be done with [mod_]ssl? Can access to a website require a c

Limiting access to bad URLs

Under woody I've setup a small server using Squid proxy and diald. Now, because the Internet will be used by children I don't want them to access pornographic material so in squid.conf I put the following (some words are in Italian): #SQUID.CONF begins exactly here http_port 8080 #We recommend

Re: limiting access

On Sun, 20 Aug 2000 11:18:17 PDT, kmself@ix.netcom.com writes: >> On Sun, Aug 20, 2000 at 02:11:00AM -0700, kmself@ix.netcom.com wrote: >> > As suggested, the restricted shell. Invoked with rbash or bash -r. >> >=20 >> > This doesn't allow changes to $PATH, users can't cd, and a number of >> > oth

Re: limiting access

On Sun, Aug 20, 2000 at 01:34:04AM -0800, Ethan Benson wrote: > On Sun, Aug 20, 2000 at 02:11:00AM -0700, kmself@ix.netcom.com wrote: > > > > As suggested, the restricted shell. Invoked with rbash or bash -r. > > > > This doesn't allow changes to $PATH, users can't cd, and a number of > > other

Re: limiting access

On Sun, Aug 20, 2000 at 02:11:00AM -0700, kmself@ix.netcom.com wrote: > > As suggested, the restricted shell. Invoked with rbash or bash -r. > > This doesn't allow changes to $PATH, users can't cd, and a number of > other restrictions exist. You *have* to either point users to a system > direct

Re: limiting access

On Sun, Aug 20, 2000 at 10:14:01AM +0200, Robert Waldner wrote: > > Hi! > > (I´m quite sure that a pointer in the right direction/to the proper FM > is all I need.) > > I have a bunch of luser-accounts on one of my boxes, what I want is to > restrict them to their home-dir, with only very spec

Re: limiting access

On Sun, 20 Aug 2000, Robert Waldner wrote: > I have a bunch of luser-accounts on one of my boxes, what I want is to > restrict them to their home-dir, with only very special exceptions. You probably want to use rsh, the restricted shell (as opposed to rsh the remote shell). > Any hints? iirc th

limiting access

Hi! (I´m quite sure that a pointer in the right direction/to the proper FM is all I need.) I have a bunch of luser-accounts on one of my boxes, what I want is to restrict them to their home-dir, with only very special exceptions. Any hints? iirc there is a way to set the root-dir to some othe

Re: Limiting Access

Quoth Peter Good, > usergrouptelnet ftp > access10 no yes > access20 no yes > shells yes yes > allothers yes yes > > It's a web hosting box, that also hosts shell accounts. the people with > webpage packages don't need telnet and all webpage accoun

Re: Limiting Access SOLVED

Found out why, missed taking the comment off this # Uncomment and edit /etc/security/access.conf if you need to # set access limits. # (Replaces /etc/login.access file) account required pam_access.so hehe pays not to work when tired, edited access.conf to suit, and now have telnets to th

Re: Limiting Access

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, Peter Good <[EMAIL PROTECTED]> writes: > I dunno, I'll look into NIS, but originally I thought Pam would handle > it. There is a PAM module that implements what you're looking for. I played around with it for a while, back when I was using Red

Re: Limiting Access

Graeme had more of an idea of what i'd like to do, what it looks like is thus usergrouptelnet ftp access10 no yes access20 no yes shells yes yes allothers yes yes It's a web hosting box, that also hosts shell accounts. the people with webpage packa

Re: Limiting Access

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, Peter Good <[EMAIL PROTECTED]> writes: > This may sound like a newbie question but, how do i stop a certian group > from accessing my system via telnet? I've played with PAM to no avail, > spent the last 3 hours on it in fact. System is 2.2, just

Re: Limiting Access

> This may sound like a newbie question but, how do i stop a certian group > from accessing my system via telnet? I've played with PAM to no avail, > spent the last 3 hours on it in fact. System is 2.2, just need someone > to point me in the right direction, if anyone can help, plz lemme know, > it

Limiting Access

This may sound like a newbie question but, how do i stop a certian group from accessing my system via telnet? I've played with PAM to no avail, spent the last 3 hours on it in fact. System is 2.2, just need someone to point me in the right direction, if anyone can help, plz lemme know, it's driving