Re: Limiting access time (fwd)

Cristian Gafton (gafton@sorosis.ro)
Wed, 11 Dec 1996 07:12:00 +0200 (EET)

On Thu, 5 Dec 1996, MegaZone wrote:

> If you mean aggregate limit - like x hours a day - that is not supported
> and would take new code.

I have a hack allowing you to specify monthly limits in hours. You will
have to have available NDBM on your system for using it - I don't have
time to write old-systems compatibility code :-)

What I do is something like this in my users file:

DEFAULT Auth-Type = System, GROUP="users", Expiration="SHADOW", MAXTIME=20, LOGINS=2
User-Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-Address = a.b.c.d,
Framed-Netmask = 255.255.255.0,
Framed-Routing = Broadcast-Listen,
Framed-MTU = 1500,
Framed-Compression = Van-Jacobsen-TCP-IP

The above entry means that for the members of the 'users' group use the
expiration according to the password aging from the system shadow file,
with a monthly limit of 20 hours, and maximum 2 concurent logins.

It's very beta, but if you'd like to test it...
ftp://sysadm.sorosis.ro/pub/radius

Let me know how it works for you. I've tested it only on Linux, if you
have problems compiling on other platforms, please send me a patch.

Thanks,

Cristian Gafton

--
--------------------------------------------------------------------
Cristian Gafton                                    gafton@sorosis.ro
Computers & Communications Center              Network Administrator
35 Moara de Foc St., Iasi 6600, ROMANIA           Tel: +40-32-252938
http://www.cccis.ro                               Fax: +40-32-252933
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
UNIX is user friendly. It's just selective about who its friends are.