[plug] Restricting web access to specific users
Jon Miller
jlmiller at mmtnetworks.com.au
Wed May 28 13:05:32 WST 2003
Just curious, what OS is on the workstation? Why not use a login script for each user and based on the user id have certain services available or not available. As Matt stated earlier use a script (login) to either bring up or down the Interface.
Jon
>>> levsky at rave.iinet.net.au 12:35:48 PM 28/05/2003 >>>
On Wed, May 28, 2003 at 11:53:48AM +0800, Matt Kemner wrote:
> On Wed, 28 May 2003, quoth Derek Fountain:
>
> > Is there a way of restricting access to an ethernet interface based on user
> > id?
>
> Create a pair of shell scripts that run either ifup ethN or ifdown ethN
> and give access to those script to his wife via sudo.
There *is* an owner match in at least the patch-o-matic for netfilter, which
will only allow processes owned by a particular uid/gid to match a rule.
I can't think of the details off the top of my head, but I can look it
up for you when I get home if you like.
Cheers
Mark
--
"Transported to a surreal landscape, a young girl murders the first
woman she encounters, then teams up with three strangers to kill again".
Plot summary of "The Wizard of Oz"
Jon L. Miller, MCNE, CNS
Director/Sr Systems Consultant
MMT Networks Pty Ltd
http://www.mmtnetworks.com.au
"I don't know the key to success, but the key to failure
is trying to please everybody." -Bill Cosby
More information about the plug
mailing list