From owner-man-jp-reviewer@jp.freebsd.org  Wed Jun 24 04:30:50 1998
Received: (from daemon@localhost)
	by jaz.jp.freebsd.org (8.8.8+3.0Wbeta13/8.7.3) id EAA23269;
	Wed, 24 Jun 1998 04:30:50 +0900 (JST)
	(envelope-from owner-man-jp-reviewer@jp.FreeBSD.org)
Received: from horse.fsinet.or.jp (horse.fsinet.or.jp [202.239.206.6])
	by jaz.jp.freebsd.org (8.8.8+3.0Wbeta13/8.7.3) with ESMTP id EAA23262
	for <man-jp-reviewer@jp.freebsd.org>; Wed, 24 Jun 1998 04:30:47 +0900 (JST)
	(envelope-from keiji@poker.wada)
Received: from poker.wada (ppp-kw108.fsinet.or.jp [202.215.9.182]) by horse.fsinet.or.jp (8.8.5/3.5Wpl5) with ESMTP id EAA22008 for <man-jp-reviewer@jp.freebsd.org>; Wed, 24 Jun 1998 04:30:37 +0900 (JST)
Received: from localhost (localhost [127.0.0.1])
	by poker.wada (8.8.8+2.7Wbeta7/3.6W) with ESMTP id EAA23284;
	Wed, 24 Jun 1998 04:29:05 +0900 (JST)
Message-Id: <199806231929.EAA23284@poker.wada>
To: man-jp-reviewer@jp.freebsd.org
Cc: wkeiji@fsinet.or.jp
From: Wada Keiji <wkeiji@fsinet.or.jp>
In-Reply-To: Your message of "Mon, 22 Jun 1998 19:47:51 +0900"
References: <19980622194751F.sakai@csl.cl.nec.co.jp>
X-Mailer: Mew version 1.70 on Emacs 19.28.1 / Mule 2.3
X-Pgp-Fingerprint: A1 51 84 CC 76 61 EF 8D  31 0B D4 E6 AF 6A EF 9D
X-Url: http://www.tamlab.dnj.ynu.ac.jp/~keiji/
Mime-Version: 1.0
Content-Type: Multipart/Mixed;
	boundary="--Next_Part(Wed_Jun_24_04:28:58_1998)--"
Content-Transfer-Encoding: 7bit
Date: Wed, 24 Jun 1998 04:29:03 +0900
Reply-To: man-jp-reviewer@jp.freebsd.org
Precedence: list
X-Distribute: distribute [version 2.1 (Alpha) patchlevel=24]
X-Sequence: man-jp-reviewer 276
Subject: [man-jp-reviewer 276] skey.access.5
Errors-To: owner-man-jp-reviewer@jp.freebsd.org
Sender: owner-man-jp-reviewer@jp.freebsd.org

----Next_Part(Wed_Jun_24_04:28:58_1998)--
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit

$BOBED$G$9!#(B

$B5^$$$GLu$7$?$N$G$A$g$C$HIT0B$G$9!#(B

----Next_Part(Wed_Jun_24_04:28:58_1998)--
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Content-Description: "skey.access.5"

.TH SKEY.ACCESS 5
.SH $BL>>N(B
skey.access \- S/Key $B%Q%9%o!<%I!&%3%s%H%m!<%k!&%F!<%V%k(B
.SH $B2r@b(B
S/key$B!&%Q%9%o!<%I!&%3%s%H%m!<%k!&%F!<%V%k(B(\fIetc/skey.access\fR)$B$O!"(B
UNIX$B%Q%9%o!<%I$,%7%9%F%`$K%"%/%;%9$9$k$?$a$K$$$D;H$o$l$k$+$r(B
$B%m%0%$%s$J$I$N%W%m%0%i%`$,7hDj$9$k$?$a$K;HMQ$5$l$^$9!#(B

.IP \(bu
$B%F!<%V%k$,B8:_$7$J$$>l9g$O!"%Q%9%o!<%I@)8B$O$"$j$^$;$s!#(B
$B%f!<%6$O(BUNIX$B%Q%9%o!<%I$"$k$$$O(BS/Key$B%Q%9%o!<%I$rF~NO$9$k$3$H$,$G$-$^$9!#(B
.IP \(bu
$B%F!<%V%k$,B8:_$9$k>l9g$O!"(B
$BL@Gr$K5-=R$5$l$F$$$k>l9g$N$_(BUNIX$B%Q%9%o!<%I$,5v2D$5$l$^$9!#(B
.IP \(bu
$B$?$@$7!"%7%9%F%`!&%3%s%=!<%k$+$i$O>o$K(BUNIX$B%Q%9%o!<%I$O5v2D$5$l$^$9!#(B
.SH $B=q<0(B
$B%F!<%V%k$N%U%)!<%^%C%H$O(B1$B9TEv$?$j(B1$B%k!<%k$G$"$k!#(B
$B%k!<%k$O=gHV$K8!:w$5$l$^$9!#(B
$B:G=i$K>r7o$,9g$&%k!<%k$,8+$D$+$C$?$H$-$b$7$/$O!"(B
$B%F!<%V%k$N:G8e$KE~C#$7$?$i8!:w$O=*N;$7$^$9!#(B
.PP
$B%k!<%k$N%U%)!<%^%C%H(B:
.sp
.in +5
permit $B>r7o(B $B>r7o(B...
.br
deny $B>r7o(B $B>r7o(B...
.in
.PP
.I permit
$B$H(B
.I deny
$B$K$O(B0$B$^$?$O$$$/$D$+$N>r7o$,=q$1$^$9!#(B
$B%3%a%s%H$O(B`#\'$B$G;O$^$j!"$=$N0l9T$9$Y$F$,%3%a%s%H$K$J$j$^$9!#(B
$B6u9T$d%3%a%s%H9T$OL5;k$5$l$^$9!#(B
.PP
$B$9$Y$F$N>r7o$,K~B-$9$k$H$-$K%k!<%k$,9g$$$^$9!#(B
$B>r7o$N$J$$%k!<%k$O>o$KK~B-$9$k$3$H$,$G$-$^$9!#(B
$BNc$($P!":G8e$N%(%s%H%j!<$O(B
.I deny
$B$r$A$g$&$I$=$N%i%$%s$K;}$D$h$&$K$9$k$3$H$,$G$-$^$9!#(B
.SH $B>r7o(B
.IP "hostname wzv.win.tue.nl"
wzv.win.tue.nl.$B$H$$$&%[%9%H$+$i%m%0%$%s$7$?$H$-??$K$J$j$^$9!#(B
$B7Y9p$N$H$3$m$r;2>H$7$F$/$@$5$$!#(B
.IP "internet 131.155.210.0 255.255.255.0"
131.155.210.$B$N%M%C%H%o!<%/$+$i%m%0%$%s$7$?$i??$K$J$j$^$9!#(B
$B%M%C%H%o!<%/%"%I%l%9$H%M%C%H%^%9%/$O<!$N%U%)!<%^%C%H$K$J$j$^$9!#(B
.sp
.ti +5
internet $B%M%C%H%o!<%/%"%I%l%9(B $B%M%C%H%^%9%/(B
.sp
$B%m%0%$%s$7$F$/$k%[%9%H$N%"%I%l%9$,;XDj$7$?%M%C%H%o!<%/%"%I%l%9$H(B
$B%M%C%H%^%9%/$K9g$&>l9g??$K$J$j$^$9!#(B
$B7Y9p$N$H$3$m$r;2>H$7$F$/$@$5$$!#(B
.IP "port ttya"
$B%m%0%$%s$7$F$$$k%?!<%_%J%k$,(B
.IR /dev/ttya
$B$J$i$P??$K$J$j$^$9!#(B
$BK:$l$F$O$J$i$J$$$N$O(BUNIX$B%Q%9%o!<%I$O%7%9%F%`%3%s%=!<%k$+$i$N(B
$B%m%0%$%s$K$O>o$K5v$5$l$F$$$kE@$G$9!#(B
.IP "user uucp"
.IR uucp
$B%f!<%6$,%m%0%$%s$7$h$&$H$7$?$H$-??$K$J$j$^$9!#(B
.IP "group wheel"
.I wheel
$B%0%k!<%W$H$7$F%m%0%$%s$7$h$&$H$7$?$H$-??$K$J$j$^$9!#(B
.SH $B8_49@-(B
$B2a5n$N8_49@-$N$?$a$K!"(B
.I internet
$B$H$$$&%-!<%o!<%I$O%M%C%H%o!<%/%"%I%l%9$H%^%9%/$N%Q%?!<%s$+$i(B
$B>J$+$l$k$+$b$7$l$^$;$s!#(B
.SH $B7Y9p(B
$B$$$/$D$+$N%k!<%k$N7?$,%[%9%HL>$d%M%C%H%o!<%/$rDL$7$FM?$($i$l$k(B
$B%"%I%l%9$N>pJs$KMj$C$F$$$k!#(BUNIX$B%Q%9%o!<%I$KBP$7$F%7%9%F%`$,5v$7$F$$$k(B
$B967b$,9M$($i$l$k%j%9%H$G$9!#(B
.IP "$B%[%9%H%"%I%l%9$N56B$(B Host address spoofing (source routing)"
$B?/F~<T$O<+J,$N%$%s%?!<%U%'!<%9$r?.Mj$G$-$k%M%C%H%o!<%/$K$D$J$.!"(B
$B$=$N%=!<%9%"%I%l%9$r;H$C$F$$$kHo32<T$K$D$J$2$^$9!#(B
$B4V0c$C$F$$$k%/%i%$%"%s%H$N%"%I%l%9$,$"$k$H$9$l$P!"(B
$BHo32<T$,4V0c$C$?7kO@$r%[%9%H%"%I%l%9$K4p$E$/$$$FF3$/$+!"(B
$B%"%I%l%9$+$i0z$+$l$kL>A0$K4p$E$$$FF3$-$^$9!#(B
.sp
$BBP=hK!(B: (1) $B%M%C%H%o!<%/$+$i$N(BUNIX$B%Q%9%o!<%I$rMQ$$$?%m%0%$%s$r5v$5$J$$(B
 (2) $B%=!<%9%k!<%F%#%s%0$rCF$/%M%C%H%o!<%/%=%U%H%&%'%"$r;H$$$^$9!#(B
($BNc$($P!"(Btcp wrapper)
.PP
$B$[$H$s$I$N%M%C%H%o!<%/%5!<%P$O%/%i%$%"%s%H$N%M%C%H%o!<%/%"%I%l%9$+$i(B
$B%/%i%$%"%s%H$NL>A0$r2r7h$7$^$9!#(B
$B<!$NL@$i$+$J967b$O$=$l$f$($G$9!#(B
.IP "$B%[%9%H%M!<%`56B$(B Host name spoofing (bad PTR record)"
$B?/F~<T$O%/%i%$%"%s%H$N%M%C%H%o!<%/%"%I%l%9$r?.Mj$5$l$?%[%9%H$H$7$F(B
$B2r7h$5$;$k$?$a$K%M!<%`%5!<%P%7%9%F%`$rA`:n$7$^$9!#(B
$B8m$C$?%[%9%HL>$K4p$E$$$F(B
$BHo32<T$,4V0c$C$?7kO@$r%[%9%HL>$K4p$E$/$$$FF3$/$+!"(B
$B%[%9%HL>$+$i0z$+$l$kL>A0$K4p$E$$$FF3$-$^$9!#(B
.sp
$BBP=hK!(B: (1) $B%M%C%H%o!<%/$+$i$N(BUNIX$B%Q%9%o!<%I$rMQ$$$?%m%0%$%s$r5v$5$J$$(B
 (2) $B%=!<%9%k!<%F%#%s%0$rCF$/%M%C%H%o!<%/%=%U%H%&%'%"$r;H$$$^$9!#(B
($BNc$($P!"(Btcp wrapper)
.PP
UNIX$B$N%m%0%$%s%W%m%0%i%`$N$h$&$J$$$/$D$+$N%"%W%j%1!<%7%g%s$O!"(B
$B%/%i%$%"%s%H$N%[%9%HL>$+$i%"%I%l%9$r3d$j=P$7$^$9!#(B
$B:#=R$Y$?967b$K2C$($F!"$b$&0l$D$N2DG=@-$,$"$j$^$9!#(B
.IP "$B%[%9%H%"%I%l%9$N56B$(B Host address spoofing (extra A record)"
$B?/F~<T$O%/%i%$%"%s%H$N%M%C%H%o!<%/%"%I%l%9$r?.Mj$5$l$?%[%9%H$H$7$F(B
$B2r7h$5$;$k$?$a$K%M!<%`%5!<%P%7%9%F%`$rA`:n$7$^$9!#(B
.sp
$BBP=hK!(B: (1) $B%M%C%H%o!<%/$+$i$N(BUNIX$B%Q%9%o!<%I$rMQ$$$?%m%0%$%s$r5v$5$J$$(B
 (2) skeyaccess()$B$OB>$N?M$,B0$9$k%M%C%H%o!<%/%"%I%l%9$rL5;k$7$^$9!#(B
.SH DIAGNOSTICS
$B9=J8%(%i!<$O(Bsyslogd$B$K=P$5$l$^$9!#(B
$B%(%i!<$,8+$D$+$C$?$i$=$N%k!<%k$O%9%-%C%W$5$l$^$9!#(B
.SH FILES
/etc/skey.access, password control table
.SH $BCx<T(B
.nf
Wietse Venema
Eindhoven University of Technology
The Netherlands

----Next_Part(Wed_Jun_24_04:28:58_1998)----
