![[BACK]](/cvsweb/icons/back.gif){kind=icon}
Return to access.c CVS log ![[TXT]](/cvsweb/icons/text.gif){kind=icon}
![[DIR]](/cvsweb/icons/dir.gif){kind=icon}
Up to [CSRG BSD Unix] / 43BSDTahoe / new / nntp / server|
Return to access.c CVS log | Up to [CSRG BSD Unix] / 43BSDTahoe / new / nntp / server |
1.1 ! root 1: #ifndef lint ! 2: static char *sccsid = "@(#)access.c 1.16 (Berkeley) 10/15/87"; ! 3: #endif ! 4: ! 5: #include "common.h" ! 6: #include <sys/socket.h> ! 7: ! 8: #define SNETMATCH 1 ! 9: #define NETMATCH 2 ! 10: ! 11: /* ! 12: * host_access -- determine if the client has permission to ! 13: * read, transfer, and/or post news. read->transfer. ! 14: * We switch on socket family so as to isolate network dependent code. ! 15: * ! 16: * Parameters: "canread" is a pointer to storage for ! 17: * an integer, which we set to 1 if the ! 18: * client can read news, 0 otherwise. ! 19: * ! 20: * "canpost" is a pointer to storage for ! 21: * an integer,which we set to 1 if the ! 22: * client can post news, 0 otherwise. ! 23: * ! 24: * "canxfer" is a pointer to storage for ! 25: * an integer,which we set to 1 if the ! 26: * client can transfer news, 0 otherwise. ! 27: * ! 28: * "gdlist" is a comma separated list of ! 29: * newsgroups/distributions which the client ! 30: * can access. ! 31: * ! 32: * Returns: Nothing. ! 33: * ! 34: * Side effects: None. ! 35: */ ! 36: ! 37: #ifdef LOG ! 38: char hostname[256]; ! 39: #endif ! 40: ! 41: host_access(canread, canpost, canxfer, gdlist) ! 42: int *canread, *canpost, *canxfer; ! 43: char *gdlist; ! 44: { ! 45: int sockt; ! 46: int length; ! 47: struct sockaddr sa; ! 48: int match; ! 49: int count; ! 50: char hostornet[MAX_STRLEN]; ! 51: char readperm[MAX_STRLEN]; ! 52: char postperm[MAX_STRLEN]; ! 53: char groups[MAX_STRLEN]; ! 54: char host_name[MAX_STRLEN]; ! 55: char net_name[MAX_STRLEN]; ! 56: char snet_name[MAX_STRLEN]; ! 57: char line[MAX_STRLEN]; ! 58: register char *cp; ! 59: register FILE *acs_fp; ! 60: ! 61: gdlist[0] = '\0'; ! 62: ! 63: #ifdef DEBUG ! 64: *canread = *canpost = *canxfer = 1; ! 65: return; ! 66: #endif ! 67: ! 68: *canread = *canpost = *canxfer = 0; ! 69: ! 70: sockt = fileno(stdin); ! 71: length = sizeof (sa); ! 72: ! 73: if (getpeername(sockt, &sa, &length) < 0) { ! 74: if (isatty(sockt)) { ! 75: #ifdef LOG ! 76: (void) strcpy(hostname, "stdin"); ! 77: #endif ! 78: *canread = 1; ! 79: } else { ! 80: #ifdef SYSLOG ! 81: syslog(LOG_ERR, "host_access: getpeername: %m"); ! 82: #endif ! 83: #ifdef LOG ! 84: (void) strcpy(hostname, "unknown"); ! 85: #endif ! 86: } ! 87: return; ! 88: } ! 89: ! 90: switch (sa.sa_family) { ! 91: case AF_INET: ! 92: inet_netnames(sockt, &sa, net_name, snet_name, host_name); ! 93: break; ! 94: ! 95: #ifdef DECNET ! 96: case AF_DECnet: ! 97: dnet_netnames(sockt, &sa, net_name, snet_name, host_name); ! 98: break; ! 99: #endif ! 100: ! 101: default: ! 102: #ifdef SYSLOG ! 103: syslog(LOG_ERR, "unknown address family %ld", sa.sa_family); ! 104: #endif ! 105: return; ! 106: }; ! 107: ! 108: /* Normalize host name to lower case */ ! 109: ! 110: for (cp = host_name; *cp; cp++) ! 111: if (isupper(*cp)) ! 112: *cp = tolower(*cp); ! 113: ! 114: #ifdef LOG ! 115: syslog(LOG_INFO, "%s connect\n", host_name); ! 116: (void) strcpy(hostname, host_name); ! 117: #endif ! 118: ! 119: /* ! 120: * We now we have host_name, snet_name, and net_name. ! 121: * Our strategy at this point is: ! 122: * ! 123: * for each line, get the first word ! 124: * ! 125: * If it matches "host_name", we have a direct ! 126: * match; parse and return. ! 127: * ! 128: * If it matches "snet_name", we have a subnet match; ! 129: * parse and set flags. ! 130: * ! 131: * If it matches "net_name", we have a net match; ! 132: * parse and set flags. ! 133: * ! 134: * If it matches the literal "default", note we have ! 135: * a net match; parse. ! 136: */ ! 137: ! 138: acs_fp = fopen(accessfile, "r"); ! 139: if (acs_fp == NULL) { ! 140: #ifdef SYSLOG ! 141: syslog(LOG_ERR, "access: fopen %s: %m", accessfile); ! 142: #endif ! 143: return; ! 144: } ! 145: ! 146: while (fgets(line, sizeof(line), acs_fp) != NULL) { ! 147: if ((cp = index(line, '\n')) != NULL) ! 148: *cp = '\0'; ! 149: if ((cp = index(line, '#')) != NULL) ! 150: *cp = '\0'; ! 151: if (*line == '\0') ! 152: continue; ! 153: ! 154: count = sscanf(line, "%s %s %s %s", ! 155: hostornet, readperm, postperm, groups); ! 156: ! 157: if (count < 4) { ! 158: if (count < 3) ! 159: continue; ! 160: groups[0] = '\0'; /* No groups specified */ ! 161: } ! 162: ! 163: if (streql(hostornet, host_name)) { ! 164: *canread = (readperm[0] == 'r' || readperm[0] == 'R'); ! 165: *canxfer = (*canread || readperm[0] == 'X' ! 166: || readperm[0] == 'x'); ! 167: *canpost = (postperm[0] == 'p' || postperm[0] == 'P'); ! 168: (void) strcpy(gdlist, groups); ! 169: break; ! 170: } ! 171: ! 172: if (*snet_name && streql(hostornet, snet_name)) { ! 173: match = SNETMATCH; ! 174: *canread = (readperm[0] == 'r' || readperm[0] == 'R'); ! 175: *canxfer = (*canread || readperm[0] == 'X' ! 176: || readperm[0] == 'x'); ! 177: *canpost = (postperm[0] == 'p' || postperm[0] == 'P'); ! 178: (void) strcpy(gdlist, groups); ! 179: } ! 180: ! 181: if (match != SNETMATCH && (streql(hostornet, net_name) || ! 182: streql(hostornet, "default"))) { ! 183: match = NETMATCH; ! 184: *canread = (readperm[0] == 'r' || readperm[0] == 'R'); ! 185: *canxfer = (*canread || readperm[0] == 'X' ! 186: || readperm[0] == 'x'); ! 187: *canpost = (postperm[0] == 'p' || postperm[0] == 'P'); ! 188: (void) strcpy(gdlist, groups); ! 189: } ! 190: } ! 191: ! 192: (void) fclose(acs_fp); ! 193: }
This archive runs on limited infrastructure. Preserving old code on modern bandwidth. Automated agents are requested to crawl responsibly.