[ previous ] [ next ] [ threads ]
 
 From:  Chris Buechler <cbuechler at gmail dot com>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Captive with IMAP
 Date:  Tue, 28 Sep 2004 19:27:56 -0400
On Tue, 28 Sep 2004 16:06:53 -0700, Mitch (WebCob) <mitch at webcob dot com> wrote:
>
> Don't piss on the idea when there isn't a better alternative... ;-)
>

But there is.  Use a user DB on m0n0wall, as you mentioned.  

 
> Any of those users (though they may not be able to access their ISP's radius
> service) could access their POP service or IMAP service... 

And then (probably without them realizing) allow every user of their
ISP to authenticate to their hotspot!  True, probably a small risk in
a home environment, but it gives them a false sense of security
nonetheless.  Not to mention the risk of a less-then-clueful admin
turning it on in a business.


> You have to remember that many people who use this software have MINIMAL
> hard core unix experience. They are following directions to write a CF on
> their PC or MAC, buying a soekris box or imaging the drive of an OLD pc, and
> starting out. Don't make it impossible for people to work with us?
> 

In that situation, the user database Dinesh discussed is exactly what they need.