[Date Prev][Date Next]
Access control for services
- To: openldap-software@OpenLDAP.org
- Subject: Access control for services
- From: Shanker Balan <firstname.lastname@example.org>
- Date: Sat, 20 Jan 2001 20:11:20 +0530
- Content-disposition: inline
- Organisation: Exocore Consulting (P) Ltd <http://www.exocore.com>
- User-agent: Mutt/1.2i
Is there any mechanism by which i can provide selective access to
services like FTP, Proxy etc by referring to a user's attributes stored
on a LDAP database?
For example, if the attribute "httpaccess: 0" exists in a user's ldif entry,
that user should be denied proxy access using squid. Similarly, if the ldif
entry has the attribute "mailaccess: 0", Sendmail should automatically
reject mails coming to this user saying "no such user".
Has anybody implemented such a tight access control on a service by
service basis? Can this be achieved?
Mulder: You can't bury the truth!
"The X-Files: Aprocrypha"