I am trying this command (I am still in testing mode, that's why I am
delegated -P1080 SERVER=socks AUTHORIZER=-pam OWNER="root"
I am wondering why user1 is not being blocked from accessing
10.80.80.100. Do you see anything wrong with my syntax?
Thanks (I'll tell you later how I would implement RADIUS authentication
through PAM. It's almost trivial)
Yutaka Sato wrote:
> In message <_A4904@delegate-en.ML_> on 09/15/10(07:58:44)
> you Vietnhi Phuvan <email@example.com> wrote:
> |I am trying this syntax:
> |delegated -P1080 SERVER=socks
> |AUTHORIZER=-pam:http,ftp:192.168.255.0/24:* REMITTABLE="tcprelay/80"
> |REMITTABLE="tcprelay/22" HOSTLIST="ConsServ:/10.80.80.100"
> |REJECT="tcprelay:!ConsServ:ConsClnt,user1" PERMIT="tcprelay:*:*"
> |and I get
> |-bash: !ConServ: event not found
> |The intent is to block user1 from accessing ConServ through ports 80 and
> |22. The bash shell doesn't like the "!" sign. What's wrong with the syntax?
> A user of a command shell is expected to know what "!" means when it
> used in a command line, and how to escape the interpretation of "!"
> by a shell (using "\"). Just see "man bash" and search the word
> "history" and the phrase "history substitution".
> Another (recommended) way is not to use "!" on a command line, but in
> a shell script to which the "history substitution" is not applied.
> And another (the most recommended) way is writing parameters so that
> never been interpreted by a shell, that is, writing each parameter
> line by line in a file and include it with +=file.
> 9 9 Yutaka Sato, CSDP#005482 <firstname.lastname@example.org> http://delegate.org/y.sato/
> ( ~ ) National Institute of Advanced Industrial Science and Technology
> _< >_ 1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan
> Do the more with the less -- B. Fuller
Senior Systems Engineer
SPECIAL APPLIED INTELLIGENCE
36-40 37th Street, Suite 201
Long Island City, NY 11101
800.511.9818 [Tauk*] x2000
-> progress for hire <-