From owner-freebsd-questions  Sat Sep 16 14:43:15 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from ducky.nz.freebsd.org (ns1.unixathome.org [203.79.82.27])
	by hub.freebsd.org (Postfix) with ESMTP id DF08A37B42C
	for <freebsd-questions@FreeBSD.ORG>; Sat, 16 Sep 2000 14:43:12 -0700 (PDT)
Received: from wocker (wocker.int.nz.freebsd.org [192.168.0.99])
	by ducky.nz.freebsd.org (8.9.3/8.9.3) with ESMTP id JAA16595;
	Sun, 17 Sep 2000 09:43:03 +1200 (NZST)
Message-Id: <200009162143.JAA16595@ducky.nz.freebsd.org>
From: "Dan Langille" <dan@langille.org>
Organization: langille.org
To: "Crist J . Clark" <cjclark@reflexnet.net>
Date: Sun, 17 Sep 2000 09:43:19 +1200
MIME-Version: 1.0
Content-type: text/plain; charset=US-ASCII
Content-transfer-encoding: 7BIT
Subject: Re: internal auth and inetd don't seem to like each other
Reply-To: dan@langille.org
Cc: freebsd-questions@FreeBSD.ORG
In-reply-to: <20000916133407.Y69158@149.211.6.64.reflexcom.com>
References: <200009161238.AAA13888@ducky.nz.freebsd.org>; from dan@langille.org on Sun, Sep 17, 2000 at 12:38:40AM +1200
X-mailer: Pegasus Mail for Win32 (v3.12c)
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On 16 Sep 2000, at 13:34, Crist J . Clark wrote:

> It seems to work fine for me,

I think I know why now.

> Have you tried running inetd in debug mode, -d?

This tells me more.  I starte inetd like this:

[root@ducky:~] # inetd -d -wW -R 1024

Within the first dozen or so lines of output, I see this:

ADD : auth proto=tcp accept=1 max=0 user=root 
group=(null)class=daemon builtin=0x80501f0 server=internal policy=""

It appears that inetd needs to be restarted to get the internal auth to 
work.  A mere HUP won't work.

Thanks.

> > side note: from what I've seen of other working examples, I don't think
> > this will provide a working auth for boxes behind the fw/nat box (on
> > which the above was done).
> 
> You are saying you will run this on the NAT box? It should work
> fine. Use '-d' or '-g' options for auth.

Yes, I will run this on the NAT box.  But it doesn't appear to achieve my 
goals.  I was hoping for an auth which would work for IRC clients on 
internal workstations with access through the firewall.  It's not.  But 
perhaps my expectations aren't reasonable.

cheers
--
Dan Langille
The FreeBSD Diary - http://www.freebsddiary.org/
FreshPorts        - http://freshports.org/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message