bionic (5) nnrp.access.5.gz

Provided by: inn_1.7.2q-45build2_amd64 bug

NAME

       nnrp.access - access file for on-campus NNTP sites

DESCRIPTION

       The  file /etc/news/nnrp.access specifies the access control for those NNTP sites that are not handled by
       the main InterNetNews daemon innd(8).  The nnrpd(8) server reads it when first spawned by innd.

       Comments begin with a number sign (``#'') and continue through the end of  the  line.   Blank  lines  and
       comments are ignored.  All other lines should consist of five fields separated by colons:
              hosts:perms:username:password:patterns

       The first field is a wildmat(3)-style pattern specifying the names or Internet address of a set of hosts.
       Before a match is checked, the client's hostname (or its Internet address if gethostbyaddr(3)  fails)  is
       converted  to  lowercase.   Each  line  is matched in turn, and the last successful match is taken as the
       correct one.

       The second field is a set of letters specifying the permissions granted to the client.  The perms  should
       be chosen from the following set:
              R    The client can retrieve articles
              P    The client can post articles

       The  third  and  fourth fields specify the username and password that the client must use to authenticate
       themselves before the server will accept any  articles.   Note  that  no  authentication  (other  then  a
       matching  entry  in  this  file)  is  required  for  newsreading.  If they are empty, then no password is
       required.  Whitespace in these fields will result in the client being  unable  to  properly  authenticate
       themselves and may be used to disable access.

       The  fifth  field  is  a set of patterns identifying the newsgroups that the client is allowed to access.
       The patterns are interpreted in the same manner as the newsfeeds(5) file.  The default,  however,  denies
       access to all groups.

       The  access  file is normally used to provide host-level access control for reading and posting articles.
       There are times, however, when this is not sufficient and user-level access control is needed.   Whenever
       an  NNTP  ``authinfo''  command  is  used,  the  nnrpd server re-reads this file and looks for a matching
       username and password.  If the local newsreaders are modified to send the ``authinfo'' command, then  all
       host entries can have no access and specific users can be granted the appropriate read and post access.

       For example:
              ##  host:perm:user:pass:groups
              ## Default is no access.
              *::  -no-  :  -no-  :!*
              ##  FOO hosts have no password, can read anything.
              *.foo.com:Read Post:::*
              ##  A related workstation can't access FOO newsgroups.
              lenox.foo.net:RP:martha:hiatt:*,!foo.*

       If the file contains passwords, it should not be world-readable.

HISTORY

       Written by Rich $alz <rsalz@uunet.uu.net> for InterNetNews.  This is revision 1.11, dated 1996/09/06.

SEE ALSO

       innd(8), newsfeeds(5), nnrpd(8), wildmat(3).

                                                                                                  NNRP.ACCESS(5)