INN commit: trunk/doc/pod (readers.conf.pod)

INN Commit rra at isc.org
Sat Mar 21 13:30:37 UTC 2015


    Date: Saturday, March 21, 2015 @ 06:30:37
  Author: iulius
Revision: 9798

readers.conf:  improve the first example to disambiguate its effect against local connections

Modified:
  trunk/doc/pod/readers.conf.pod

------------------+
 readers.conf.pod |   16 +++++++++++-----
 1 file changed, 11 insertions(+), 5 deletions(-)

Modified: readers.conf.pod
===================================================================
--- readers.conf.pod	2015-03-18 20:47:11 UTC (rev 9797)
+++ readers.conf.pod	2015-03-21 13:30:37 UTC (rev 9798)
@@ -628,18 +628,24 @@
 
     auth example.com {
         hosts: "*.example.com, example.com"
-        default: <LOCAL>
+        default: "<EXAMPLE>"
     }
 
     access full {
+        users: "<EXAMPLE>"
         newsgroups: *
     }
 
-Note that the access realm has no users: key and therefore applies to any
-user identity.  The only available auth realm only matches hosts in the
-"example.com" domain, though, so any connections from other hosts will be
-rejected immediately.
+Note that the above access realm could also be written without the
+users: key, in which case it applies to any user identity (though in
+this example, the user identity that will be assigned to all matching
+connections is C<< <EXAMPLE> >>).  It is however recommended to keep
+an explicit users: key so as to better view to whom the access block
+applies.
 
+As the only available auth realm only matches hosts in the "example.com"
+domain, any connections from other hosts will be rejected immediately.
+
 If you have some systems that should only have read-only access to the
 server, you can modify the example above slightly by adding an additional
 auth and access group:



More information about the inn-committers mailing list