From owner-freebsd-isp  Wed Sep 10 07:27:16 1997
Return-Path: <owner-freebsd-isp>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id HAA04624
          for isp-outgoing; Wed, 10 Sep 1997 07:27:16 -0700 (PDT)
Received: from super-g.inch.com (super-g.com [207.240.140.161])
          by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id HAA04619
          for <isp@FreeBSD.ORG>; Wed, 10 Sep 1997 07:27:13 -0700 (PDT)
Received: from localhost (spork@localhost)
	by super-g.inch.com (8.8.7/8.8.5) with SMTP id KAA16872;
	Wed, 10 Sep 1997 10:38:22 -0400 (EDT)
Date: Wed, 10 Sep 1997 10:38:21 -0400 (EDT)
From: spork <spork@super-g.com>
X-Sender: spork@super-g.inch.com
To: Louis-Philippe Alain <xenub@boisfrancs.qc.ca>
cc: isp@FreeBSD.ORG
Subject: Re: Limiting users connect time (+ another little question)
In-Reply-To: <3.0.32.19970909205917.0091a470@boisfrancs.qc.ca>
Message-ID: <Pine.BSF.3.96.970910103605.16543B-100000@super-g.inch.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-isp@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

Or you can go the simple route, like we do.  We have an AUP that states
that there is no sharing of accounts.  If we see a violation, we give a
warning.  If we see it again, we cancel the user.  Generally, I've found
that the people that do this sort of thing are not the kind of folks whose
business we need.  People who repeatedly break policy also tend to be the
biggest complainers and the worst bill-payers.

Charles

On Tue, 9 Sep 1997, Louis-Philippe Alain wrote:

> Hi M.Seltzer!
> 	Here we have a "tow hours of inactivity" time out. When there's no
> activity on the line for two consecutive hours, they are disconnected. And
> we also automaticaly disconnect users who stay connected for 24 hours in a
> row. A user that is disconnected can reconnect himself immediately after
> the disconnection.
> 
> 	What we have troubles with is users that double-logging in. We have a case
> that a user was connected 10 times under the same username. The person just
> pay us for one account and then sold his password to everyone he known! Is
> there any script that we could use to disallow a user to be logged tow time
> under the same username?
> 
> Thanks a lot!
> 
> Louis-Philippe Alain
> Internet Bois-Francs
> 
> 
> At 08:24 PM 9/9/97 -0400, you wrote:
> >I think that I was too vague with my previous question ( and I forgot a
> >subject line, sorry). What I am after is ISP policy on dealing with a user
> >who stays logged on constantly.
> >
> >Do you:
> >
> >1. Log them off (and wait for them to redial)
> >2. Log them off and refuse connection for x minutes/hours
> >3. Send them email asking them to cut down on their logon time
> >4. Threaten the user with death and dismemberment
> >5. Terminate their account
> >6. Other (please specify)
>