NAME
domain - nnrpd domain resolver
SYNOPSIS
domain domainname
DESCRIPTION
This program can be used in readers.conf to grant access based on the
subdomain part of the remote hostname. In particular, it only returns
success if the remote hostname ends in domainname. (A leading dot on
domainname is optional; even without it, the argument must match on
dot-separated boundaries). The "username" returned is whatever initial
part of the remote hostname remains after domainname is removed. It is
an error if there is no initial part (that is, if the remote hostname
is exactly the specified domainname).
EXAMPLE
The following readers.conf(5) fragment grants access to hosts with
internal domain names:
auth internal {
res: "domain .internal"
default-domain: "example.com"
}
access internal {
users: "*@example.com"
newsgroups: example.*
}
Access is granted to the example.* groups for all connections from
hosts that resolve to hostnames ending in ".internal"; a connection
from "foo.internal" would match access groups as "foo@example.com".
BUGS
It seems the code does not confirm that the matching part is actually
at the end of the remote hostname (e.g., "domain: example.com" would
match the remote host "foo.example.com.org" by ignoring the trailing
".org" part).
Does this resolver actually provide any useful functionality not
available by using wildcards in the readers.conf(5) hosts parameter?
If so, the example above should reflect this functionality.
HISTORY
This documentation was written by Jeffrey M. Vinocur <jeff@litech.org>.
$Id: domain.pod 8200 2008-11-30 13:31:30Z iulius $
SEE ALSO
nnrpd(8), readers.conf(5)