Path: utzoo!utgpu!news-server.csri.toronto.edu!rpi!think.com!zaphod.mps.ohio-state.edu!cis.ohio-state.edu!ucbvax!GENIUS.TAU.AC.IL!shani
From: shani@GENIUS.TAU.AC.IL (Oren Shani)
Newsgroups: comp.unix.admin
Subject: Re: Controlling access to workstations
Keywords: Access control
Message-ID: <2153@ccsg.tau.ac.il>
Date: 30 May 91 10:14:43 GMT
References: <1991May27.150137.11976@fys.ruu.nl>
Sender: daemon@ucbvax.BERKELEY.EDU
Organization: Faculty of Engineering, Tel Aviv University
Lines: 35

Okay, Okay, Once and for all, this is how it is done:

1) Create netgroups (in /etc/netgroup), including the users list
   for each workstation. e.g.:

ws1_users 		\
	(,jenny,)	\
	(,jim,)

ws2_users		\
	(,jack,)	\
	(,greg,)

etc.. (of course, you may use any valid combination of previously defined
groups, etc.)

2) the password file of each workstation, should include all non humans and
   an entry of the form
+@ws?_users:

   and that's all. This will allow only users of group ws?_users to acess that
   workstation.

There are some improuvments to this basic scheme that may come to mind, but
this is the basic idea.

Cheers, 
	
-- 
    ---  ---  Oren Shani (shani@genius.tau.ac.il)
   /  / /     Faculty of Engineering, Tel Aviv univ.
  /  /  ---   Israel
 /  /     /
 --- * --- *  "And that's the last time I trust a woman!"