[Date Prev][Date Next] [Chronological] [Thread] [Top]

Access control for services


Is there any mechanism by which i can provide selective access to
services like FTP, Proxy etc by referring to a user's attributes stored
on a LDAP database?

For example, if the attribute "httpaccess: 0" exists in a user's ldif entry,
that user should be denied proxy access using squid. Similarly, if the ldif
entry has the attribute "mailaccess: 0", Sendmail should automatically
reject mails coming to this user saying "no such user".

Has anybody implemented such a tight access control on a service by
service basis? Can this be achieved?

-- Shanu

Mulder: You can't bury the truth!

	"The X-Files: Aprocrypha"