NAME

Authen::Tcpdmatch::TcpdmatchRD - Tcpdmatch Parser based on Parse::RecDescent

SYNOPSIS

use Authen::Tcpdmatch::TcpdmatchRD;
tcpdmatch(  'ftp',  'red.haw.org'          )
tcpdmatch(  'ftp',  '192.168.0.1'          )
tcpdmatch(  'ftp',  'red.haw.org' ,   /etc )

DESCRIPTION

This module implements the core functionality of tcpdmatch using a P::RD parser; it consults hosts.allow and hosts.deny to decide if service should be granted.

Due to its tiny size (2k bytes), this module is best suited for embedded environments, or to modules that need this type of authentication. Although this is not a full-feature implementation of tcpdmatch(1), it supports the following capabilities:

A. ALL and LOCAL wildcards.
B. Recursive EXCEPT  modifier
C. Leading and trailing dot patterns
D. Netmasks
E. Skipping lines with faulty syntax, comments, or blanks
tcpdmatch()

The first and second arguments are the requested service and the name of remote host, respectively. The third (optional) argument indicates the directory of the hosts.* files. (Default is /etc .)

LIMITATIONS

It does not support shell commands, client lookups, endpoint patterns, spoofing attacks, and expansions. If these features are important to you, perhaps you should be using libwarp.so with Authen::Libwrap .

It is not re-entrant.

EXPORT

tcpdmatch

AUTHOR

Ioannis Tambouras, <ioannis@earthlink.net>

SEE ALSO

Authen::libwrap. hosts.allow(1).