Re: Ideas to control TCP login by "resolved" DDNS match?

From: Alberto 'JCN-9000' Varesio (Fake.User_at_hotmail.com)
Date: 02/20/04

• Next message: Jim: "Fast-Write Cache"
• Previous message: geneh_at_shaw.ca: "Re: Cross referencing lscfg -vp info to feature code on a PCI adaptor"
• In reply to: Bob Mariotti: "Ideas to control TCP login by "resolved" DDNS match?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Date: Fri, 20 Feb 2004 19:41:58 +0100

Bob Mariotti wrote:
> We currently use TCP Wrappers to control who can access our AIX boxen
> and this works reasonably well.
>
> However, we have some telecommuters now that have home ISP's with
> dynamic IP's. We've signed them up with DDNS services so we can
> resolve their DDNS names.
>
> Problem is - I cannot figure out how to go about implementing this is
> an inetd type of way.
>
> Currently inetd starts tcpd which matches the incoming identification
> to the contents of hosts.allow. What is happening now is that the IP
> coming in is being resolved as belonging to the ISP and NOT the end
> user.
>
> I've thought about implementing a script that would determine the
> incoming IP then match it against a list of "resolved" allowable DDNS
> names.
>

If you dare trying identd, check inside the script ...
http://www.clock.org/~fair/opinion/identd.html
http://identd.sourceforge.net/
but some sort of strong authentication should be better ...

-- 
  Alberto 'JCN-9000' Varesio AKA BlueRider      AIX pSeries System Admin
  Datavision PLM - Tel: +390117710276         Biker on HONDA CB500 - LHG
  http://www.datavisionplm.com                 Jeeper on Sport TJ - Wave
  Please http://www.fsf.org/philosophy/no-word-attachments.html, thanks!
==
  BOFH Excuse: Your EMAIL is now being delivered by the USPS.

---

• Next message: Jim: "Fast-Write Cache"
• Previous message: geneh_at_shaw.ca: "Re: Cross referencing lscfg -vp info to feature code on a PCI adaptor"
• In reply to: Bob Mariotti: "Ideas to control TCP login by "resolved" DDNS match?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Relevant Pages Re: Ajax browser problem ... XMLHttpRequest object but i'm getting some error please ... help me resolve this problem ... The first step if resolving an error is to read the error message generated for the error (in IE, for example, you go into Tools->Internet Options->Advanced and disable script debugging and enable the showing of error messages for every script error and then re-run the script. ... (comp.lang.javascript) RE: CC Field Populated via a Dropdown List ... Without a script, it doesn't resolve. ... resolves it as a second name on the cc line - first is just Meredith Start, ... on the attached and manipulate it for my purposes and it didn't work. ... (microsoft.public.outlook.program_forms) Failed to initialize all required WMI classes ... I tried to google for some hints to resolve this problem, ... I attach this tiny script I wanted to ... Set objWMIService = GetObject("winmgmts:" & ... (microsoft.public.windowsxp.wmi) Re: WMI script ... If I understand your question you want the script to resolve the machine by ... When resolving a machine name by MAC address I ... > for each IPConfig in IPConfigSet ... (microsoft.public.windows.server.general) Ideas to control TCP login by "resolved" DDNS match? ... We've signed them up with DDNS services so we can ... resolve their DDNS names. ... an inetd type of way. ... Currently inetd starts tcpd which matches the incoming identification ... (comp.unix.aix)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(15)