# NewsCache Configuration File # Keywords are case-dependent! ################################################################ ## Version ################################################################ # Specify the version here, if you want to get warnings about # incompatibilities ConfigVersion 5 ################################################################ ## ServerType ################################################################ # ServerType may be either standalone or inetd. ServerType standalone # If you are running in standalone mode, you should specify the # location of the pid file. PidFile /var/run/newscache.pid # The Address, where NewsCache is listening, if running in # standalone mode. # In a multihomed environment the address of one NIC can be # specified. The default Port is nntp from /etc/services. For # the port-number an entry fom /etc/services or a port-number # can be specified. # # !!! If ListenTo is specified, then the parameter CachePort # is ignored !!! ListenTo DEFAULT #ListenTo 133.144.155.166 #ListenTo 133.144.155.166:12000 #ListenTo 133.144.155.166:telnet # The port, where NewsCache is listening, if running in standalone # mode. Either an entry from /etc/services or a port-number prepended # by a #-sign. # !!! Only valid, if the parameter ListenTo is not specified !!! #CachePort #12000 # Only if NewsCache cannot figure out the name of your machine, # specify the hostname here. Probably your system is _not_ set up # correctly. Remember: hostname should return the fully qualified # domain name #Hostname my.host.name ################################################################ ## Nice values ################################################################ # How nice values works? # First call getpriority, take the result and add the Nicexxx # value and call with the result priority setpriority. # See man nice for details. # for the master server process NiceServer 0 # for the client proceses NiceClient 10 # for the clean process NiceClean 3 ################################################################ ## User and group under which NewsCache should be run ################################################################ Username news Groupname news # Put in here the local newscache administrator Admin root@localhost ################################################################ ## Client-access configuration ## Code initially by Vladislav Bogdanov <slava@nsys.by> ## Read/PostTo options by Thomas Gschwind <tom@infosys.tuwien.ac.at> ################################################################ # Client-access configuration # allow: # allow access from these hosts (default=none). Values are: # read, post, debug. With debug, the client can use the # xdebug command. # NOTE: if you specify debug, then the client is able to # read your configuration file (xdebug dump configuration)!! # List: # A list of newsgroups that should be shown by the # list [active|active.times|...] and newgroups commands # Read: # A list of newsgroups that client can read without authentication # PostTo: # Postings to these newsgroups should be allowed to clients without # authentication # Authentication: # none ... no further authentication necessary # file:/path/to/file ... formatdescription # username:password:list:read:postto:allow # The additional access specification are added to the normal # List Read and PostTo Parameters (see above) # The password field is a encrypted password (md5crypt of crypt) # unix:list:read:postto:allow ... use UNIX authentication # The additional access specification are added to the normal # List Read and PostTo Parameters (see above). If only unix is # specified, then all clients must step throuh the authentication. # If further fields specified, then unauthenticated clients have # the access specified with the parameter allow, List, ReadTo, # PostTo and authenticated clients uses the arguments and modify # the original parameters. # # NOTE: Order of entries is important, so put defaults last # If no 'Default' entry found, default policy will be DENY. # AccessList { Client stdin { allow read post debug # list all newsgroups, allow users to read *, and to post to * List * Read * PostTo * # no further authentication necessary/possible Authentication none } Client localhost { allow read post # list all newsgroups, allow users to read *, and to post to * # No xdebug command for unauthenticated clients. List * Read * PostTo * Authentication unix::::debug # all authenticated clients are able to use the xdebug command } # Client .mydomain.com { # allow # List # Read # PostTo # Authentication pam:*:*:*:read,post # # PAMServicename newscache # } # Client .tuwien.ac.at { # allow read post # # list all, except for alt.* newsgroups, allow users to # # read at.* and to post to at.* # List *,!alt.* # Read at.* # PostTo at.* # # allow users to gain additional privileges by # # authenticating based on a password file # # the format of the file is username:password:read:postto # Authentication file:/usr/local/etc/tuwien.pass # } # Client 192.168.0.0/255.255.0.0 { # allow read post # # deny access to all newsgroups # List !* # Read !* # PostTo !* # # allow users to gain additional privileges by # # authenticating using standard passwd semantics # # allow to read * and to post to at.* after successful # # authentication # Authentication unix:*:at.* # } # Client 192.169.0.0/255.255.0.0 { # allow read # # deny access to all newsgroups # List at.* # Read at.* # PostTo !* # Authentication unix:*:*:*:debug,post # # allow users to gain additional privileges by # # authenticating using standard passwd semantics # # allow to read * and to post to * and can use the xdebug # # command after successful authentication. # # Unauthenticated clients can only read from at.* groups. # } # Client .aol.com { # allow none # } Default { allow none } } ################################################################ ## Server-Configuration ################################################################ # Server-Configuration: # Read: # A list of newsgroups that should be read from the news server. # PostTo: # Postings to these newsgroups should be handled by this server. # GroupTimeout: # specified how long the group information (for instance retrieved # with the command GROUP at.linux) is valid (in seconds). Note: if # the ServerSpec section contains the Options offline, then the # data will be not downloaded from the upstream server. You need # updatenews. The default value is 600 seconds. # BindFrom: # Interface for outgoing connections (for multihomed hosts) # (Code by Vladislav Bogdanov, slava@nsys.by) # Options: # (not-)offline, semioffline ... retrieve nothing/everything/articles # (not-)setpostflag ... set postflag to n in the active database, if # posting to the news server is not allowed # (not-)cached ... not yet implemented # Commands: # All commands are switched on by default and NewsCache tries itself # to find out which of the commands are supported. In some situations # it might be necessary to deactivate a command manually (eg. it is # not implemented correctly by your news server). # Netscape-Collabra/3.0 (used by news.elsa.de) does not implement over # correctly :( # To switch off, prepend the command with not- # Support commands: listgroup, over NewsServerList { Server news.example.com nntp { Read * PostTo * Retries 3 GroupTimeout 150 Options cached } # Server news.tuwien.ac.at nntp { # Retries 3 # Read * # PostTo * # GroupTimeout 150 # User joe # Password secret # BindFrom 192.168.100.1 # Options cached # Commands not-over # } # Server news.wu-wien.ac.at nntp { # Retries 1 # Read at.wu-wien.* # PostTo .none. # GroupTimeout 300 # BindFrom somehost.tuwien.ac.at # Options offline not-setpostflag # } # NoServer { # Read au.*,z-netz.*,maus.*,fido* # PostTo au.* # } } ################################################################ ## Timeouts ################################################################ # Timeouts in seconds for the retrieval of the active database # (first parameter) and the description of the newsgroups (second # parameter). If a client requests "list active", then newscache # checks if the active database timeout is reached and first # requests the active informations from the upstream servers before # returning the data to the client. Note: if the ServerSpec section # contains the Options offline or semioffline, then the data will # be not downloaded from the upstream server. You need updatenews. # Timeouts 3600 3600 # Disconnect idle client connections after 10 minutes ClientTimeout 600 # Do not allow more than 16 simultaneous connections # This switch works only in standalone mode MaxConnections 16 ################################################################ ## Spool- and Log-Directory ################################################################ # All the cached newsgroups and articles go here SpoolDirectory /var/cache/newscache # Size of Spool Directory in KiloBytes # This value is used by cacheclean, which should be run every # few hours by the cron daemon. SpoolSize 3300000 # All the log files go here, if syslogd is not being used. This # depends on how NewsCache has been configured. By default, # NewsCache uses syslogd. #LogDirectory /var/log # Log Style # All combination of these options are valid: # strict-inn ... only log INN style messages, omit NewsCache # specific log messages. At the moment this # is only supported at the LOG_NOTICE level. # hostname ... Log the clients hostname, as it is done by INN. # ip-address ... Log the IP-Address of the client. # Log both, hostname and ip-address LogStyle hostname ip-address ################################################################ ## Prefetching ################################################################ # Each newsgroup listed in this file will be prefetched, # whenever one of its articles is read by a user or whenever # updatenews is executed. #PrefetchFile /etc/prefetch