TACACS+ server based on Cisco engineering release
The base source for this TACACS+ package is Cisco's publicly available TACACS+
"developer's kit", for which we are grateful.
We needed a way to limit certain groups within the company from logging into
or getting enable access on certain devices. Access lists (ACLs) of a sort have
been added that match against the address of the device speaking with the
daemon.
Being paranoid, we also wanted to limit which hosts could connect to the
daemon. This can be done with tcp_wrappers via inetd, but this does not work if
the daemon is running standalone. So, calls to libwrap, the tcp_wrappers
library, have been added. For the source and more information about
tcp_wrappers, see Wietse Venema's site at http://www.porcupine.org/.
Along the way we have also added autoconf, expanded the manual pages,
cleaned-up various formatting and STD C nits, added PAM authentication support,
and fixed a few LP64 problems.
Of course we have also received some enchancement requests from users. One of
which was the addition of a host clause (per-host configuration). This has been
added; ported from Devrim Seral's implementation. See the documentation for
further information.
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout network/tac_plus && cd $_ - Create Badge
Source Files
| Filename | Size | Changed |
|---|---|---|
| tac_plus.changes | 0000002573 2.51 KB | |
| tac_plus.conf | 0000002765 2.7 KB | |
| tac_plus.init | 0000001445 1.41 KB | |
| tac_plus.pamd | 0000000204 204 Bytes | |
| tac_plus.service | 0000000247 247 Bytes | |
| tac_plus.spec | 0000004786 4.67 KB | |
| tacacs-F4.0.4.28.tar.gz | 0000530049 518 KB |
Latest Revision
andrea florio (anubisg1)
accepted
request 884511
from
Misha Komarovskiy (zombah)
(revision 3)
- Add service flag to stay in foreground - Add systemd service and libnsl-devel requirement to fix build on newer distro's
Comments 0