Annotation of embedaddon/mpd/doc/mpd14.html, revision 1.1.1.1
1.1 misho 1: <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
2: <HTML>
3: <HEAD>
4: <META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
5: <TITLE>mpd.secret</TITLE>
6: </HEAD>
7: <BODY text="#000000" bgcolor="#ffffff">
8:
9: <A HREF="mpd.html"><EM>Mpd 5.6 User Manual</EM></A>
10: <b>:</b> <A HREF="mpd9.html"><EM>Running Mpd</EM></A>
11: <b>:</b> <A HREF="mpd11.html"><EM>Configuration file format</EM></A>
12: <b>:</b> <EM><code>mpd.secret</code></EM><BR>
13: <b>Previous:</b> <A HREF="mpd13.html"><EM><code>mpd.conf</code></EM></A><BR>
14: <b>Next:</b> <A HREF="mpd15.html"><EM><code>mpd.script</code></EM></A>
15:
16:
17: <HR NOSHADE>
18: <H2><A NAME="14"></A>3.2.3. <code>mpd.secret</code></H2>
19: <p>This file contains login, password pairs, one entry per line.
20: Each entry may have an optional third argument, which is
21: an IP address with optional netmask width. This is used
22: when netgotiating IP addresses with the corresponding peer.
23: We restrict the allowable IP addresses we'll assign to the
24: peer to lie within the specified range.</p>
25: <p>In the example below, we define two ISP accounts that we
26: use to connect to the Internet. Also, we have three friends
27: who are allowed to connect to us, and we want to restrict
28: the IP addresses that we'll let them have. Finally, the last
29: user's password is retrieved by an external program.
30: <blockquote><code>
31: <pre>
32: #
33: # mpd.secret configuration file
34: #
35:
36: # my two ISP accounts
37: mylogin1 password1
38: mylogin2 "Xka \r\n"
39:
40: # my three friends
41: bob "akd\"ix23" 192.168.1.100
42: jerry "33dk88kz3" 192.168.1.101
43: phil "w*d9m&_4X" 192.168.1.128/25
44:
45: # An external password access program
46: gregory "!/usr/local/etc/mpd/get_passwd.sh"
47: </pre>
48: </code></blockquote>
49:
50: Here <code>bob</code> and <code>jerry</code> must negotiate
51: <code>192.168.1.100</code> and <code>192.168.1.101</code>,
52: respectively, while <code>phil</code> can ask for any
53: address from <code>192.168.1.128</code> through <code>192.168.1.255</code>.</p>
54: <p>The leading ``!'' means that the password for user <code>gregory</code> is not
55: stored in the <code>mpd.secret</code> file directly. Instead, the
56: named program is run with the username being authenticated as an
57: additional argument (so in this case the command line would be
58: ``<code>/usr/local/etc/mpd/get_passwd.sh gregory</code>''). The command string
59: may include initial, fixed arguments as well. This program
60: should print the plaintext password for the named user as a
61: single line to standard output, and then exit. <code>Mpd</code> will block
62: for this operation, so the program should respond and exit quickly.
63: If there is an error, the command should print an empty line, or just not
64: print anything.</p>
65: <p>As a special case, if the username in the <code>mpd.secret</code> file
66: is ``*'', then this line must be last as it matches any username.
67: Then it is up to the external program to determine whether the
68: username is valid. This wildcard matching only works for ``!'' lines.</p>
69: <p>The total length of the executed command must be less than 128
70: characters. The program is run as the same user who runs
71: <code>mpd</code>, which is usually <code>root</code>, so the usual
72: care should be taken with scripts run as root, e.g., make sure the
73: script is not world-readable or world-writable. Standard input and
74: standard error are inherited from the parent <code>mpd</code> process.
75: Note that any additional arguments will be visible to users on the
76: local machine running <code>ps(1)</code>.</p>
77: <HR NOSHADE>
78: <A HREF="mpd.html"><EM>Mpd 5.6 User Manual</EM></A>
79: <b>:</b> <A HREF="mpd9.html"><EM>Running Mpd</EM></A>
80: <b>:</b> <A HREF="mpd11.html"><EM>Configuration file format</EM></A>
81: <b>:</b> <EM><code>mpd.secret</code></EM><BR>
82: <b>Previous:</b> <A HREF="mpd13.html"><EM><code>mpd.conf</code></EM></A><BR>
83: <b>Next:</b> <A HREF="mpd15.html"><EM><code>mpd.script</code></EM></A>
84:
85:
86:
87: </BODY>
88: </HTML>
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>
![[BACK]](/icons/cvsweb/back.gif){kind=icon}
Return to mpd14.html CVS log ![[TXT]](/icons/cvsweb/text.gif){kind=icon}
![[DIR]](/icons/cvsweb/dir.gif){kind=icon}
Up to [ELWIX - Embedded LightWeight unIX -] / embedaddon / mpd / doc