1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
|
.TH NODE.PERMS 5 "26 April 1997" Linux "Linux Programmer's Manual"
.SH NAME
node.perms \- LinuxNode permissions file.
.SH DESCRIPTION
.LP
.B Node.perms
file is read at program startup with the knowledge of users username
(call), connection type (AX.25, NET/ROM, ROSE, TCP/IP), peers IP address
(for TCP/IP) and port name (for AX.25). The first entry matching this
information is taken and user is asked for password and given permissions
according to it.
.LP
The lines within
.B node.perms
must either be a comment line, which starts with a # in the first column, or
a permission entry in the following format, each field being delimited by
white space:
.sp
.RS
username type portname password permissions
.RE
.sp
The field descriptions are:
.sp
.TP 14
.B username
This is matched against users username (call) without SSID. An asterisk
(*) matches any username.
.TP 14
.B type
This is matched against the type of the connection to user.
Possible values for this field are:
.RS 14
.TP
.B *
matches any type of connection.
.TP
.B ax25
matches users coming in with AX.25.
.TP
.B netrom
matches users coming in with NET/ROM.
.TP
.B rose
matches users coming in with ROSE.
.TP
.B local
matches TCP/IP connections where users host is in "local" network
as defined in node.conf(5).
.TP
.B ampr
matches TCP/IP connections where users host is in amprnet (44.0.0.0/8).
.TP
.B inet
matches TCP/IP connections where users host is neither in "local"
network nor in amprnet.
.TP
.B host
matches users starting LinuxNode from
shell.
.RE
.TP 14
.B portname
If user is coming in with AX.25 this field is matched against the
local port name the user is coming in via. An asterisk (*) matches
any port name.
.TP 14
.B password
If the previous tree fields match and this field is not a single
asterisk (*) the user is asked for a password. The password is
then matched against this field.
.TP 14
.B permissions
This field represents a a bitmask of operations the user is permitted
to do. It is a sum of the values listed here:
.RS 14
.TP
.B 1
permits logging in even if no other permissions are given.
.TP
.B 2
permits outgoing AX.25 connects.
.TP
.B 4
permits outgoing NET/ROM connects.
.TP
.B 8
permits telneting to hosts in the "local" network as defined in
node.conf(5).
.TP
.B 16
permits telneting to hosts in amprnet.
.TP
.B 32
permits telneting to hosts neither in the "local" network nor in amprnet.
.TP
.B 64
permits using hidden ports in outgoing AX.25 connections.
(See HiddenPorts command in node.conf(5).)
.TP
.B 128
permits outgoing ROSE connects.
.TP
.B 256
The no-escape flag. Disables the escape mechanism for this user.
.RE
.SH FILES
.LP
/etc/ax25/node.perms
.SH "SEE ALSO"
.BR node (8),
.BR node.conf (5),
.BR axports (5),
.BR ax25 (4).
|
