Article delegate-en/969 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
[Reference:<_A949@delegate-en.ML_>]
Newsgroups: mail-lists.delegate-en

[DeleGate-En] Re: Delegate as an origin nntp-server
18 Jan 2001 07:37:18 GMT ysato@etl.go.jp (Yutaka Sato)


On 01/05/01(23:55) you pwubqbdyi-znqnbujjaalr.ml@ml.delegate.org wrote
in <_A949@delegate-en.ML_>
 |I want to use delegate as an origin nntp-server
 |
 |with this command:
 |delegated -P119 SEVER=nntp://-.-/ RELIABLE="192.168.1.0/24" ADMIN="...@.."
 |Ok, it works fine. !!
 |
 |Now I want to use a user identification. (user and password)
 |With the AUTH I am only able to use user@host..
 |Or I have to use the FTP-Account on the same server.
 |But I don't want to give a FTP account and I don't have an auth-server.

Since there seems be several authentication and authorization
protocols under standardization, I will support the most
appropriate one in future...

Also, you might feel the "SSLway" of DeleGate is useful for
user restriction using client-certificate together with
encryption based on SSL.
See <URL:http://www.delegate.org/delegate/ssl/>.

 |How can I make delegate work as an origin-nntp-server with
 |authorization like user:password ??????

For the nonce, I'll support a minimum mechanism for auth-server.
Authorization for NNTP-DeleGate, as well as Telnet-DeleGate and
FTP-DeleGate, can be done with the AUTHORIZER parameter, and
a required auth-server can be at arbitrary port number, 8888 as
an example, and referred as AUTHORIZER="localhost/8888"
The protocol of the auth-server for DeleGate follows that of
USER+PASS of FTP server (in the current implementation. APOP of
POP may be added in near future).

#!/bin/sh
####### a simple auth-server for DeleGate #######################
####### which accepts only "user1" as USER and  "pass1" as PASS
echo "220"
read USER USERNAME
USERNAME=`echo $USERNAME|tr -d '\012'`
echo "331"
read PASS PASSWORD
PASSWORD=`echo $PASSWORD|tr -d '\012'`
if [ "$USERNAME"."$PASSWORD"="user1.pass1" ]
then
        echo "230"
else
        echo "530"
fi
exit 0
#################################################################

You can start this auth-server from inetd or as a DeleGate
server like this:

  delegated -Plocalhost:8888 SERVER=exec XCOM=auth-server.sh

Then you can use this auth-server from NNTP-DeleGate like this:

  delegated -P8119 SERVER=nntp AUTHORIZER=localhost/8888

Cheers,
Yutaka
--
Yutaka Sato <ysato@delegate.org> http://www.delegate.org/~ysato/   @ @ 
Computer Science Division, Electrotechnical Laboratory            ( - )
1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan                  _<   >_

  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V