version 1.56, 2004/07/28 09:40:29 |
version 1.57, 2005/01/22 08:17:59 |
|
|
for (i = 0; i < options.num_deny_users; i++) |
for (i = 0; i < options.num_deny_users; i++) |
if (match_user(pw->pw_name, hostname, ipaddr, |
if (match_user(pw->pw_name, hostname, ipaddr, |
options.deny_users[i])) { |
options.deny_users[i])) { |
logit("User %.100s not allowed because listed in DenyUsers", |
logit("User %.100s from %.100s not allowed " |
pw->pw_name); |
"because listed in DenyUsers", |
|
pw->pw_name, hostname); |
return 0; |
return 0; |
} |
} |
} |
} |
|
|
break; |
break; |
/* i < options.num_allow_users iff we break for loop */ |
/* i < options.num_allow_users iff we break for loop */ |
if (i >= options.num_allow_users) { |
if (i >= options.num_allow_users) { |
logit("User %.100s not allowed because not listed in AllowUsers", |
logit("User %.100s from %.100s not allowed because " |
pw->pw_name); |
"not listed in AllowUsers", pw->pw_name, hostname); |
return 0; |
return 0; |
} |
} |
} |
} |
if (options.num_deny_groups > 0 || options.num_allow_groups > 0) { |
if (options.num_deny_groups > 0 || options.num_allow_groups > 0) { |
/* Get the user's group access list (primary and supplementary) */ |
/* Get the user's group access list (primary and supplementary) */ |
if (ga_init(pw->pw_name, pw->pw_gid) == 0) { |
if (ga_init(pw->pw_name, pw->pw_gid) == 0) { |
logit("User %.100s not allowed because not in any group", |
logit("User %.100s from %.100s not allowed because " |
pw->pw_name); |
"not in any group", pw->pw_name, hostname); |
return 0; |
return 0; |
} |
} |
|
|
|
|
if (ga_match(options.deny_groups, |
if (ga_match(options.deny_groups, |
options.num_deny_groups)) { |
options.num_deny_groups)) { |
ga_free(); |
ga_free(); |
logit("User %.100s not allowed because a group is listed in DenyGroups", |
logit("User %.100s from %.100s not allowed " |
pw->pw_name); |
"because a group is listed in DenyGroups", |
|
pw->pw_name, hostname); |
return 0; |
return 0; |
} |
} |
/* |
/* |
|
|
if (!ga_match(options.allow_groups, |
if (!ga_match(options.allow_groups, |
options.num_allow_groups)) { |
options.num_allow_groups)) { |
ga_free(); |
ga_free(); |
logit("User %.100s not allowed because none of user's groups are listed in AllowGroups", |
logit("User %.100s from %.100s not allowed " |
pw->pw_name); |
"because none of user's groups are listed " |
|
"in AllowGroups", pw->pw_name, hostname); |
return 0; |
return 0; |
} |
} |
ga_free(); |
ga_free(); |