Message-ID:

Just don't create a file called -rf. :-) -- Larry Wall in <11393@jpl-devvax.JPL.NASA.GOV>

computers / news.software.nntp / Re: INN2: authentication

INN2: authentication

<21rs8k-gbo.ln1@moria.erebor.sync.net>

https://www.rocksolidbbs.com/computers/article-flat.php?id=2881&group=news.software.nntp#2881

copy link Newsgroups: news.software.nntp

Path: i2pn2.org!rocksolid2!news.neodome.net!news.mixmin.net!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!.POSTED!not-for-mail
From: gmkeros@gmail.com (Kyonshi)
Newsgroups: news.software.nntp
Subject: INN2: authentication
Date: Thu, 1 Feb 2024 16:47:14 +0100
Organization: A noiseless patient Spider
Lines: 18
Message-ID: <21rs8k-gbo.ln1@moria.erebor.sync.net>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Info: dont-email.me; posting-host="a278b9aeeff59c856742cba98777c3fb";
logging-data="2253088"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX19FEvbhkIgox9IGsl/LVEOu"
User-Agent: Mozilla Thunderbird
Cancel-Lock: sha1:B1I3wd8sIsKdhDL0z9OaRwC2sgM=
Content-Language: en-US

by: Kyonshi - Thu, 1 Feb 2024 15:47 UTC

I am trying to set up INN2 right now, and I can access it as localhost.
What doesn't seem to work is authentication from remote. I have this
defined in my readers.conf right now which should give me a way to
authenticate with a single text file containing username:password
combinations. I previously tried with the database option, but that
didn't work either.

auth all {
auth: "/usr/lib/news/bin/auth/passwd/ckpasswd -f /etc/news/newsuse"
}
access full {
users: *
newsgroups: *
}

I am wondering if I even can properly call the ckpasswd program with
this path. (the path is where the program is located on this system)

Re: INN2: authentication

<upgilh$i67g$1@paganini.bofh.team>

copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=2882&group=news.software.nntp#2882

copy link Newsgroups: news.software.nntp

Path: i2pn2.org!i2pn.org!paganini.bofh.team!not-for-mail
From: usenet@bofh.team (Ivo Gandolfo)
Newsgroups: news.software.nntp
Subject: Re: INN2: authentication
Date: Thu, 1 Feb 2024 17:59:29 +0100
Organization: To protect and to server
Message-ID: <upgilh$i67g$1@paganini.bofh.team>
References: <21rs8k-gbo.ln1@moria.erebor.sync.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Date: Thu, 1 Feb 2024 16:59:29 -0000 (UTC)
Injection-Info: paganini.bofh.team; logging-data="596208"; posting-host="UVa2lCJi2YFEtTlJ34XukQ.user.paganini.bofh.team"; mail-complaints-to="usenet@bofh.team"; posting-account="NnMoDEm3qkIJGKBtBYRUeg";
User-Agent: Mozilla Thunderbird
Cancel-Lock: sha256:BDTqnyKtV1HOzwJkat4g9rwp0Rpq+MacZMTsZVHj5Jc=
Content-Language: en-US
X-Notice: Filtered by postfilter v. 0.9.3

by: Ivo Gandolfo - Thu, 1 Feb 2024 16:59 UTC

On 01/02/2024 16:47, Kyonshi wrote:
>
>
> I am wondering if I even can properly call the ckpasswd program with
> this path. (the path is where the program is located on this system)

The correct way (this is a working example, adapt to your system):

cat /etc/news/readers.conf

# Setup auth for user's
auth user {
hosts: *
auth: "/usr/lib/news/bin/auth/passwd/ckpasswd -f /etc/news/userdb"
default: <FAIL>
}

# If the user if autenticated use this access
access all {
users: "user,*@your.host.here.com, !localhost, !<FAIL>*"
newsgroups: *
access: "RPN"
perlfilter: true
}

# If user don't have do login, see (and post) only on local group
access fail {
users: "<FAIL>*"
newsgroups: !*,local.*
access: "RP"
perlfilter: true
}

Sincerely

--
Ivo Gandolfo

Re: INN2: authentication

<qp4t8k-l8q.ln1@moria.erebor.sync.net>

copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=2883&group=news.software.nntp#2883

copy link Newsgroups: news.software.nntp

Path: i2pn2.org!i2pn.org!weretis.net!feeder8.news.weretis.net!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!.POSTED!not-for-mail
From: gmkeros@gmail.com (Kyonshi)
Newsgroups: news.software.nntp
Subject: Re: INN2: authentication
Date: Thu, 1 Feb 2024 19:34:05 +0100
Organization: A noiseless patient Spider
Lines: 42
Message-ID: <qp4t8k-l8q.ln1@moria.erebor.sync.net>
References: <21rs8k-gbo.ln1@moria.erebor.sync.net>
<upgilh$i67g$1@paganini.bofh.team>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit
Injection-Info: dont-email.me; posting-host="a278b9aeeff59c856742cba98777c3fb";
logging-data="2304719"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1+uXmWkMDT8G10+30Ws7QQe"
User-Agent: Mozilla Thunderbird
Cancel-Lock: sha1:qS886ZjTV527eOPZvBMQ7+P4rEM=
Content-Language: en-US
In-Reply-To: <upgilh$i67g$1@paganini.bofh.team>

by: Kyonshi - Thu, 1 Feb 2024 18:34 UTC

On 2/1/2024 5:59 PM, Ivo Gandolfo wrote:
> On 01/02/2024 16:47, Kyonshi wrote:
>>
>>
>> I am wondering if I even can properly call the ckpasswd program with
>> this path. (the path is where the program is located on this system)
>
>
> The correct way (this is a working example, adapt to your system):
>
> cat /etc/news/readers.conf
>
> # Setup auth for user's
> auth user {
>     hosts: *
>     auth: "/usr/lib/news/bin/auth/passwd/ckpasswd -f /etc/news/userdb"
>     default: <FAIL>
> }
>
> # If the user if autenticated use this access
> access all {
>     users: "user,*@your.host.here.com, !localhost, !<FAIL>*"
>     newsgroups: *
>     access: "RPN"
>     perlfilter: true
> }
>
> # If user don't have do login, see (and post) only on local group
> access fail {
>     users: "<FAIL>*"
>     newsgroups: !*,local.*
>     access: "RP"
>     perlfilter: true
> }
>
>
>
> Sincerely
>

Ah, that's how this is supposed to work. I didn't get that from the
documentation at all. Thanks! Gonna try that out.

Subject	Author
INN2: authentication	Kyonshi
Re: INN2: authentication	Ivo Gandolfo
Re: INN2: authentication	Kyonshi