Date: Sun, 20 Jul 1997 16:20:42 +0000 (GMT) From: Adam David <adam@veda.is> To: danny@panda.hilink.com.au (Daniel O'Callaghan) Cc: freebsd-isp@FreeBSD.ORG Subject: Re: anon PPP Message-ID: <199707201620.QAA05273@ubiq.veda.is> In-Reply-To: <Pine.BSF.3.91.970720162740.869N-100000@panda.hilink.com.au> from Daniel O'Callaghan at "Jul 20, 97 04:34:43 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
> > What I'm really after is some way of saying (in options.ttyd*) use this > > alternate IP address if authentication fails. I'm not sure what syntax > > would be best, but :x.x.x.x,y.y.y.y looks promising. > > > > Another solution would be to let pap-secrets define a range of available > > IP addresses for the user, let the "login" user (via the login option) have > > a class entry in pap-secrets, and let the "authentication failed" class have > > lower precedence there. > > I can't help wondering why you want to do this when auth fails. If you > want to give anon ppp, can't you just give out a passwordless account name? It is my experience that the new breed of Internet users will not be able to cope with such instructions, because it is too complicated or irrelevant. Therefore I need to provide a mechanism to handle this eventuality. For instance, there is a strong tendency to capitalize the username, but that's not all. Besides, how would I specify that a whole class of users (for instance, "login" & PAP_OK) be handled by a single secret? After that it is a simple matter to add the !PAP_OK feature. The purpose is to provide a plug-in and go functionality for bootstrapping the users and to act as a safety net when the remote configuration is no longer correct. If a user can install the software in the first place, he gets a limited access which he can use to assist in the software configuration and for user registration and other support/admin communication. Of course, this is no help when Windows often forgets that it is installed for TCP/IP, but it covers most other areas. -- Adam David <adam@veda.is>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199707201620.QAA05273>