Xref: utzoo news.groups:6080 news.sysadmin:1156
Path: utzoo!attcan!uunet!husc6!bloom-beacon!mit-vax!mit-eddie!uw-beaver!uw-june!uw-entropy!dataio!pilchuck!ssc!mcgp1!newsadm
From: newsadm@mcgp1.UUCP (Netnews Administrator)
Newsgroups: news.groups,news.sysadmin
Subject: Re: Proposal for comp.security
Summary: restricting which groups news users can read
Message-ID: <1639@mcgp1.UUCP>
Date: 5 Nov 88 20:36:30 GMT
References: <1005@cps3xx.UUCP>
Organization: McCaw Cellular Communications, Inc., Seattle, WA
Lines: 24

In article <1005@cps3xx.UUCP>, rang@cpsin3.cps.msu.edu (Anton Rang) writes:
>   Is it possible to restrict access to a newsgroup (on a particular
>   machine)?  For instance, by changing the mode of its spool dir?
>   If so, this would solve 99% of the problems with a security group,
>   at least here--just don't give ordinary users privs to see it!

As luck would have it, yesterday I had to do just that.  I took Spaf's
FASCIST code and modified it, calling it PRUDE.  Basically, it makes
groups that certain users are not allowed to see seem to not even exist.

I will soak it here for another week and then post the diffs.

PLEASE, no flames about censorship.  I didn't like doing it, but a rather
sticky situation here demanded it.  (Actually, the PRUDE default is "all".
The one and only person I'm restricting is a certain member of upper
management.  I'm operating under the theory that what he doesn't know can't
hurt me.  :-)  )



					John Opalko

					newsadm@mcgp1.UUCP	(on duty)
					jgo@mcgp1.UUCP		(off duty)