From owner-freebsd-net@FreeBSD.ORG  Sat May  1 18:35:50 2004
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 925B616A4CE
	for <freebsd-net@freebsd.org>; Sat,  1 May 2004 18:35:50 -0700 (PDT)
Received: from office.suresupport.com (office.suresupport.com [213.145.98.15])
	by mx1.FreeBSD.org (Postfix) with SMTP id 5292943D2F
	for <freebsd-net@freebsd.org>; Sat,  1 May 2004 18:35:49 -0700 (PDT)
	(envelope-from tie@ankh.morp.org)
Received: (qmail 77578 invoked by uid 1026); 2 May 2004 01:32:36 -0000
Received: from tie@ankh.morp.org by office.suresupport.com by uid 1004 with
	qmail-scanner-1.20 
	(f-prot: 4.4.1/3.14.11.  Clear:RC:1(213.145.98.44):. 
	Processed in 0.021303 secs); 02 May 2004 01:32:36 -0000
Received: from unknown (HELO ankh.morp.org) (213.145.98.44)
  by office.suresupport.com with SMTP; 2 May 2004 01:32:36 -0000
Message-ID: <40945070.1040909@ankh.morp.org>
Date: Sun, 02 May 2004 04:35:44 +0300
From: Emil Filipov <tie@ankh.morp.org>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US;
	rv:1.6) Gecko/20040113
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: freebsd-net@freebsd.org
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Subject: mpd and external authentication
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 02 May 2004 01:35:50 -0000

Hi list:)

Has anyone used mpd with external authentication like this one (mpd 
manual here):
----
# mpd.secrets configuration file
# An external password access program

gregory "!/usr/local/etc/mpd/get_passwd.sh"
----

It is a very convinient way of authenticating users I admit . However 
there is a major disadvantage - you cannot (according the documentation; 
will be glad if I'm wrong) assign ip address/range to the authenticated 
user. You will need to use RADIUS authentication, in order to do so.

However, I don't feel like deploying RADIUS just to have a simple and 
convinient way of authenticating my VPN users against a database.

So my question is: has someone of you , guys, patched mpd, so that it 
can understand ip address/range ardument upon successful authentication? 
Don't want to re-discover the wheel you know. Also, Archie :), if you 
read this, could you share your thoughts about it?

TIA,
Emil Filipov