Really need help for limiting user access...

• Messages sorted by:[ date ][ thread ][ subject ][ author ]

Friends,

We are a budding ISP in Fortaleza, Brazil. I am using with much success
mgetty for part of my dial-in solution.

Recently, however, some of my users have been sharing their passwords with
friends and family with the inevitable result that I have multiple logins
for the same user account. As right this moment all my modems are full and
one user has three sessions.

My question: how can I limit a user to one session at a time? Someone gave
me the idea of making the user shell a program that checks 'w' for the
user's existence. It worked but I discovered that for mgetty, whether the
shell works or not doesn't matter. I use PAP authentication and don't give
shell access anyway. All users have /dev/null.

Maybe I have to replace the entire login program? If so, does anyone have
an example login program (in Perl or shell script) that I could examine? I
think it would be pretty easy to modify, I just don't know the dynamics of
a login program, ie. how should it exit to be interpreted by mgetty as
success or failure, how should it get the password (seems the username
comes in as the 1st argument).

Whatever ideas or pointers to more information would be greatly appreciated.

Best regards,
Alex Panagides
Ceara, Brazil
.