nuauth [ -h ] [ -V ] [ -v[v...] ] [ -l (local, for clients) port ] [ -C (local, for clients) address ] [ -L (local, for nufw) address ] [ -p (local, for nufw) port ] [ -t timeout ] [ -D ]
This manual page documents the nuauth command.
Nuauth is the authentication server of the NUFW package. Whenever a client sends a packet(1) to start a connection through the gateway, the client program (nutcpc), installed on the client's station, sends an authentication packet(2) to nuauth. The gateway's firewall queues the packet(1) and sends informations about it directly to the nuauth server. Nuauth's job is to analyse both packets(1) and (2), and check user owns the right to initialize the connection (s)he has tried to. If Nuauth finds so, Nuauth sends authorization to Nufw to accept the packet(1) through, and the connection gets initialized. If not, the connection is Dropped.
Nuauth can use a backend LDAP server for user and groups definitions, as well as Access Lists associated with those groups. Interface to Users/Groups database can also be performed through PAM/NSS. An option is also to store the user database in DBM files. It should be noted that dynamic modifications of the users base can currently only be performed if an LDAP database is used.
Original packaging and informations and help can be found from http://www.nufw.org/
Specifies UDP port to send data to when addressing the nufw (gateway) server. Nufw server must be setup to listen on that port. Default value : 4128
The nuauth daemon is designed to deal with several signals : HUP, USR1, USR2, and POLL.
Nuauth was designed and coded by Eric Leblond, aka Regit (<firstname.lastname@example.org>) , and Vincent Deffontaines, aka gryzor (<email@example.com>). Original idea in 2001, while working on NSM Ldap support.
This manual page was written by Vincent Deffontaines
Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 2 as published by the Free Software Foundation; with no Invariant Sections, no Front-Cover Texts and no Back-Cover Texts.