Matching users with ident + password in the allow block

[Tristam]

Hello! I'm having trouble creating a system where one has to request a password from a website to get to our IRC. I'm trying to make an allow where a user must have the right username (ident) AND a right password to match with that username.. But the problem is..

Code: Select all

allow { ip BLA; hostname *@*; class clients; password "juusto"; maxperip 2; };

with this anyone can enter with the password "juusto"

Code: Select all

allow { ip *@212.87.140.5; hostname BLA; class clients; password "juusto"; maxperip 2; };

with this a person from IP 212.87.140.5 (not real) can enter with the password "juusto", it works, I checked with my own IP

Code: Select all

allow { ip BLA; hostname saurus@*; class clients; password "juusto"; maxperip 2; };

if I'm not completely mistaken, I think using this would make anyone who's username/ident is "saurus" to enter with the password "juusto", but it does not work!!! It doesnt match. the "hostname saurus@*"-part does not work.. why? I can easily match users to an IP.. how to match users to their username in their irc-clients???

[Stealth]

Code: Select all

allow { ip saurus@*; hostname saurus@*; class clients; password "juusto"; maxperip 2; };

That is as close as you will get. Both the hostname and IP should have the ident. IIRC, this also only works if the users has some kind of a working identd server.

[Jobe]

the problem with using ident's as any kind of authentication is how easy they are to fake/spoof.

[Tristam]

the problem with using ident's as any kind of authentication is how easy they are to fake/spoof.

true, but in the system I'm creating this doesnt really matter.. but anyway, I'll try with what Stealth said and if it doesnt work well enough I guess my only choice is to use IP-checking..

Thanks for all help!