hi, 2009/10/22 Alex Samad <[email protected]>
> On Wed, Oct 21, 2009 at 11:49:17AM +0200, Bjoern Meier wrote: > > Hi, > > I'm bit confused about the -m owner option. > > > > If I set: > > -A OUTPUT -d <IP> -m owner --uid-owner <username> -j ACCEPT > > > > It fails and my logging shows, that the Rule will be ignored und goes to > the > > deny rule (last rule). > > > > What did I wrong? > > > > I also read that that match is disabled in newer kernels. I used the > Lenny > > Kernel 2.6.26-2-amd64. Is this option disabled in this kernel and if so, > how > > can I reenabled that (I did not find it in menuconfig). > > last time i used this is was disabled on smp machines because there was > no way to guarantee a matching. not sure if this had been fixed > > ok, can I use winbind-users in chap-secrets to bind ip-adresses to users? I need to get services (ports) to users, not to ranges. Greetings, Björn -- To boldly go where no man has gone before ... I'll wait there with touristinformation
