summaryrefslogtreecommitdiff
path: root/server/access.c
Commit message (Collapse)AuthorAge
* Add opstaff_check()Gravatar Jeffrey Hutzelman2013-02-26
| | | | | | Add a function to check whether a sender is on the opstaff ACL, which lives in $sysconfdir/zephyr/acl/opstaff.acl. This is in preparation for a number of features which grant additional access to people on that ACL.
* Add IP-address and negative ACL entriesGravatar Jeffrey Hutzelman2013-01-19
| | | | | | | | | | | | | | | | | | | | | This allows ACLs to grant access based on the IP address of a client instead of its principal name. This is done using ACL entries with the syntax "@a.b.c.d". Currently, only IPv4 addresses are supported. A single entry may match all hosts on a particular subnet by using CIDR notation, written as @a.b.c.d/nn. If no length is given, 32 is assumed. Host and principal entries can be freely mixed within the same ACL; the ACL matches if any entry matches the client. Note that this means that ACLs can now match unauthenticated clients (however, this does not lift the general constraint that only authenticated clients can subscribe at all). Additionally, support for negative ACL entries is added. These entries are indicated by a leading '!', which may be applied to both principal and host entries. Negative entries are applied in the style of AFS ACLs; that is, a matching negative entry overrides any positive entry and thus guarantees that matching clients will be denied access. (edited slightly for style by kcr@1TS.ORG)
* Don't use MAXPATHLEN anymore.Gravatar Karl Ramm2010-08-24
| | | | | | | Some systems don't have it, having shaken off the shackles of fixed lengths. Unfortunately rewriting these things "right" in a fashion portable to unembraced-and-extended C libraries is aggravating. So do it wrong until we decide to bite the bullet and demand glib.
* it is the TWENTY-FIRST CENTURY, we can STOP USING K&RGravatar Karl Ramm2009-08-09
|
* zephyr.h will pull in zephyr_err.h will pull in com_err.h without having to ↵Gravatar Karl Ramm2009-07-13
| | | | figure out where it is
* collapse state of a bunch of #if 0 and #if 1 debugging outputGravatar Karl Ramm2008-01-21
|
* de K&RifyGravatar Karl Ramm2008-01-21
|
* Some RCS ID cleanup: delete $Log$ and replace other RCS keywords with $Id$.Gravatar Greg Hudson1999-01-22
|
* Pull in sources from zephyr locker. See /mit/zephyr/repository forGravatar Greg Hudson1997-09-14
| | | | detailed change information.
* Changed index() to strchr() [ANSI]Gravatar Richard Basch1993-09-24
| | | | Solaris requires <sys/filio.h>
* Add support for K&R CGravatar Lucien Van Elsen1992-08-26
|
* saber complains about pure assignment statements in ifs-Gravatar Lucien Van Elsen1992-08-14
|
* add extra error checking on acl_load; if acl can't beGravatar Lucien Van Elsen1992-01-17
| | | | loaded, deny access.
* Converted back to ANSI C (with ifdef's for standard C)Gravatar Lucien Van Elsen1991-12-04
|
* C++ conversion and lots of modifications from summer & fall workGravatar Kenneth G Raeburn1990-11-13
|
* stub routine for access_reinit.Gravatar John Kohl1988-07-19
| | | | report errors when restricting classes
* fix rcsidGravatar John Kohl1988-06-23
|
* add debugging infoGravatar John Kohl1987-11-15
|
* if there is a colon, just null it out.Gravatar John Kohl1987-10-15
|
* clean up comments; add code for dealing with the class registryGravatar John Kohl1987-09-28
|
* modification for new access schemeGravatar John Kohl1987-09-28
|
* change names of acl'sGravatar John Kohl1987-07-15
|
* comment the moduleGravatar John Kohl1987-07-07
|
* really write the routineGravatar John Kohl1987-07-01
|
* Initial revisionGravatar John Kohl1987-06-19
generated by cgit v1.2.3 (git 2.39.1) at 2024-05-14 05:23:35 +0000