Re: non-login accounts
alex (alexm@agetech.net)
Fri, 02 Aug 1996 18:00:41 -0400
Jeremy Malli wrote:
>
> This won't stop the PortMaster from authenticating though, it'll only stop
> them from being able to telnet into the server right. Couldn't you just
> set it up in the /etc/raddb/users file to allow only that person access to
> email and not to be able to log in on the PortMaster, maybe have their
> account expired in the users file, or change their password in the users
> file. ESVA Radius has a nice way of handling this kind of situation...
>
> >I'd use this. Change the text to something meaningful and compile it.
> >
> >/*edit and compile cc -o alock alock.c
> > * put it in /usr/local/etc or /usr/local/sys/bin
> > * list it as a shell in /etc/shells
> > * use it to lock accounts - even http
> > *
> > * Steph 1994, 1995 (stephie@wizvax.net)
> > */
> >#include <stdio.h>
> >main()
> >{
> >printf("Your account has been locked for one of many\n");
> >printf("possible reasons. Please call (704)274-1196 x126 or x133\n");
> >printf("to discuss this.\n");
> >fflush(stdout);
> >sleep(5);
> >
> >}
> >
> >
> >----------
> >From: Philip A. Fitzpatrick[SMTP:phil@ilinks.net]
> >Sent: Friday, August 02, 1996 3:54 AM
> >To: radius
> >Subject: non-login accounts
> >
> >I want to create some accounts which will be e-mail only accounts, and I am
> >currently using "UNIX" style passwords. Can I create dummy user records
> >which specify non-login accounts?
> >--
> >
> >Philip A. Fitzpatrick
> >phil@ilinks.net
>
> Jeremy Malli - Visionary Communications, Inc.
> Your Link to the Future...
>
> Visionary Communications, Inc.
> 400 S. Kendrick, Suite 301
> Gillette, WY 82716
> Voice: (888) 682-1884
> FAX: (307) 682-2519
> Internet: jeremy@vcn.com
Why dont you just creat a user acccount on the Radius file and specify
an email only filter. Then on the Unix account, add them to the password
file but give them an invalid shell account like usr/bin/false that way
they cant even telnet in.