Authen::Tcpdmatch::TcpdmatchRD - Tcpdmatch Parser based on Parse::RecDescent

Authen-Tcpdmatch documentation Contained in the Authen-Tcpdmatch distribution.

Index

Code Index:

NAME

Top

Authen::Tcpdmatch::TcpdmatchRD - Tcpdmatch Parser based on Parse::RecDescent

SYNOPSIS

Top

  use Authen::Tcpdmatch::TcpdmatchRD;
  tcpdmatch(  'ftp',  'red.haw.org'          )
  tcpdmatch(  'ftp',  '192.168.0.1'          )
  tcpdmatch(  'ftp',  'red.haw.org' ,   /etc )

DESCRIPTION

Top

This module implements the core functionality of tcpdmatch using a P::RD parser; it consults hosts.allow and hosts.deny to decide if service should be granted.

Due to its tiny size (2k bytes), this module is best suited for embedded environments, or to modules that need this type of authentication. Although this is not a full-feature implementation of tcpdmatch(1), it supports the following capabilities:

 A. ALL and LOCAL wildcards.
 B. Recursive EXCEPT  modifier
 C. Leading and trailing dot patterns
 D. Netmasks
 E. Skipping lines with faulty syntax, comments, or blanks
tcpdmatch()

The first and second arguments are the requested service and the name of remote host, respectively. The third (optional) argument indicates the directory of the hosts.* files. (Default is /etc .)

LIMITATIONS

It does not support shell commands, client lookups, endpoint patterns, spoofing attacks, and expansions. If these features are important to you, perhaps you should be using libwarp.so with Authen::Libwrap .

It is not re-entrant.

EXPORT

tcpdmatch

AUTHOR

Top

Ioannis Tambouras, <ioannis@earthlink.net>

SEE ALSO

Top

Authen::libwrap. hosts.allow(1).

Authen-Tcpdmatch documentation Contained in the Authen-Tcpdmatch distribution. 
# Copyright (c) 2003 Ioannis Tambouras <ioannis@earthlink.net> .
# All rights reserved.
 
package Authen::Tcpdmatch::TcpdmatchRD;

use 5.006;
use strict;
use warnings;
use base 'Exporter';
use Attribute::Handlers;
use Authen::Tcpdmatch::Grammar;


our $VERSION     = '0.03';
our @EXPORT      = qw(  tcpdmatch check );


my  Authen::Tcpdmatch::Grammar   $p : TcpdParser  ;

sub check {
        my ( $input, $service, $remote ) = @_ ;
	$p->Start( $input, 0 , $service, $remote  );
}



sub check_file {
	my ($service, $remote, $file)  = @_;
	local undef $/ ,  open (my $fh , $file)   or return ;
	$p->Start( scalar <$fh> , 0 , $service , $remote );
}

sub tcpdmatch ($$;$)  {
	my ( $service, $remote, $dir) = @_ ;
	(check_file    $service,  $remote,  ($dir ||'/etc') . "/hosts.allow" )    or
	! (check_file  $service,  $remote,  ($dir ||'/etc') . "/hosts.deny")      or   undef;
}


1;
__END__