1
$Id: README,v 1.2 2003/01/23 00:36:01 robertc Exp $
3
README file for ip_user_check, an external helper for the
4
Squid external acl scheme.
6
It works by reading a pair composed by an ip address and an username
7
on STDIN and matching it against a configuration file.
9
The configuration for the external ACL should be:
11
external_acl_type type-name %SRC %LOGIN /path/to/ip_user_check -f /path/to/config.file
13
If the program finds a matching username/ip in the configuration file,
14
it returns `OK', or `ERR' otherwise.
16
The usage for the program is:
18
ip_user_check -f <configuration_file>
21
The configuration file format is as follows:
23
ip_addr[/mask] user|@group|ALL|NONE
25
Where ip_addr is a dotted quad format IP address, the mask
26
must be in dotted quad format too.
28
When the second parameter is prefixed with an @, the program will lookup in the
29
/etc/group entry for the specified username.
31
There are other two directives, `ALL' and `NONE', which mean "any user on this ip
32
address may authenticate" or "no user on this ip address may authenticate".
35
- Deny operator, to create `allow all but' rules
36
- Check for a valid user in the OS
37
- Accept decimal format netmasks
42
rodrigo@geekbunker.org