NAME¶
domain - nnrpd domain resolver
SYNOPSIS¶
domain domainname
DESCRIPTION¶
This program can be used in
readers.conf to grant access based on the
subdomain part of the remote hostname. In particular, it only returns success
if the remote hostname ends in
domainname. (A leading dot on
domainname is optional; even without it, the argument must match on
dot-separated boundaries). The "username" returned is whatever
initial part of the remote hostname remains after
domainname is
removed. It is an error if there is no initial part (that is, if the remote
hostname is
exactly the specified
domainname).
EXAMPLE¶
The following
readers.conf(5) fragment grants access to hosts with
internal domain names:
auth internal {
res: "domain .internal"
default-domain: "example.com"
}
access internal {
users: "*@example.com"
newsgroups: example.*
}
Access is granted to the example.* groups for all connections from hosts that
resolve to hostnames ending in ".internal"; a connection from
"foo.internal" would match access groups as
"foo@example.com".
BUGS¶
It seems the code does not confirm that the matching part is actually at the end
of the remote hostname (e.g., "domain: example.com" would match the
remote host "foo.example.com.org" by ignoring the trailing
".org" part).
Does this resolver actually provide any useful functionality not available by
using wildcards in the
readers.conf(5) hosts parameter? If so,
the example above should reflect this functionality.
HISTORY¶
This documentation was written by Jeffrey M. Vinocur
<jeff@litech.org>.
$Id: domain.pod 8200 2008-11-30 13:31:30Z iulius $
SEE ALSO¶
nnrpd(8),
readers.conf(5)