tac_plus

TACACS+ server based on Cisco engineering release

The base source for this TACACS+ package is Cisco's publicly available TACACS+ "developer's kit", for which we are grateful. We needed a way to limit certain groups within the company from logging into or getting enable access on certain devices. Access lists (ACLs) of a sort have been added that match against the address of the device speaking with the daemon. Being paranoid, we also wanted to limit which hosts could connect to the daemon. This can be done with tcp_wrappers via inetd, but this does not work if the daemon is running standalone. So, calls to libwrap, the tcp_wrappers library, have been added. For the source and more information about tcp_wrappers, see Wietse Venema's site at <a href="http://www.porcupine.org/">http://www.porcupine.org/</a> . Along the way we have also added autoconf, expanded the manual pages, cleaned-up various formatting and STD C nits, added PAM authentication support, and fixed a few LP64 problems. Of course we have also received some enchancement requests from users. One of which was the addition of a host clause (per-host configuration). This has been added; ported from Devrim Seral's implementation. See the documentation for further information.