View Full Version : dyndns IP entry
is it possible to get a plugin or even future ioftpd feature to specify a dyndns entry in IP restrictions for user so that:
1. client tries to connect.
2. server send ping to dyndns entry and gets IP
3. server compares IP of dyndns with connecting client
4. server grants or denies access according to comparison
so i would have to add only one specific dyndnsentry for every user.
thx in advance toki
wooolF[RM]
12-04-2003, 07:26 PM
just if u get negative answer u can use app called DynSite for Windows. Very handy :) Google for it if u need it :) (that was just a tip, not a solution to your question)
Regards
Linkster
12-04-2003, 07:32 PM
ummm, i'm pretty sure the ident@ip field already supports resolving hostnames on login???
the correct reverse dns entry or even a dyndns?
DR. GiGa BYTe
12-05-2003, 01:04 AM
why dont you use instead of your "dyndns check" the ident feature.
You can allocate every user a ident (e.g. cunhell@*). so, the user hast just to sent the ident... the ip doesnt matter.
just like Linkster said...
is the ident ssl encryped? which clients (beside smartftp which i use) have ident feature?
greez toki
DR. GiGa BYTe
12-05-2003, 06:19 AM
is the ident ssl encryped?
i dont know
which clients (beside smartftp which i use) have ident feature?
e.g. FlashFXP, UltraFXP, FileZilla...
Mouton
12-05-2003, 02:35 PM
site addip username *@something.dyndns.org
..?
darkone
12-05-2003, 02:58 PM
Ident is sent in plaintext. Also using dyndns in allowed hosts lists doesn't work, nor such feature will be ever added (Hostname reverse look-ups are expensive) However, there is a way to do this using itcl ([Pre] USER):
1) Get ip-list from userfile
2) If user's iplist has dyndns entries _without_ wildcards, resolve & add them to user's iplist.
3) Add some sanity check, to make sure that user never has more than MAX_IPS (defined in headers) of ips (delete obsolete ips)
Mouton
12-05-2003, 04:53 PM
u mean we can't use hostnames in allowed ip for a user ???
site addip Mouton *@bar.f00.us
won't work ?
darkone
12-05-2003, 05:37 PM
It does, if it's reversable. You can't do reverse look-up for .dyndns using ip.
Mouton
12-05-2003, 06:06 PM
ah, ok... you do ip->hostname then compare...
indeed... makes more sense than resolving all hostnames in allowed list and comparing to ip...
eh!
darkone
12-05-2003, 06:17 PM
Doesn't it :)
vBulletin® v3.8.11 Alpha 3, Copyright ©2000-2024, vBulletin Solutions, Inc.