[plug] Restricting web access to specific users

Jon Miller jlmiller at mmtnetworks.com.au
Wed May 28 13:05:32 WST 2003


Just curious, what OS is on the workstation? Why not use a login script for each user and based on the user id have certain services available or not available.  As Matt stated earlier use a script (login) to either bring up or down the Interface.


Jon
>>> levsky at rave.iinet.net.au 12:35:48 PM 28/05/2003 >>>
On Wed, May 28, 2003 at 11:53:48AM +0800, Matt Kemner wrote:
> On Wed, 28 May 2003, quoth Derek Fountain:
> 
> > Is there a way of restricting access to an ethernet interface based on user
> > id?
> 
> Create a pair of shell scripts that run either ifup ethN or ifdown ethN
> and give access to those script to his wife via sudo.

There *is* an owner match in at least the patch-o-matic for netfilter, which
will only allow processes owned by a particular uid/gid to match a rule.
I can't think of the details off the top of my head, but I can look it
up for you when I get home if you like.

Cheers

Mark


-- 
"Transported to a surreal landscape, a young girl murders the first
woman she encounters, then teams up with three strangers to kill again".
	Plot summary of "The Wizard of Oz"



Jon L. Miller, MCNE, CNS
Director/Sr Systems Consultant
MMT Networks Pty Ltd
http://www.mmtnetworks.com.au

"I don't know the key to success, but the key to failure
 is trying to please everybody." -Bill Cosby






More information about the plug mailing list