Table 10.1. Security Section: wacs.cfg
| Variable | Description | Typical Value |
|---|---|---|
| authmode | How to attempt authentication: initially this is "host" which means use whatever the web server uses itself but there will be a future extension to allow use of other authentication sources such as a database table of users. | host |
| barredusers | A comma separated list of those valid users of the server system who are not allowed to log into WACS. Most likely this might be the kids or possibly spouses who would take exception to the material - the consequences of putting people in this list are on your head! | wilma,barney |
| powerusers | A list of people who should be granted power user status when they login through wacslogin. This enables manipulation of tag lists and in due course, ratings, etc. | dino |
| adminusers | The highest grade of access - administrators allowed to do anything in the Wacs system tools. | fred,root |
| admingroup | The Unix group owner of the wacs image tree - admin users as listed above, plus the web server owner (www or apache) need to all be members of this group. | wacs |
| leasetime | The period in hours (number with an h after it) or minutes (number with an m after it) that a lease should be granted for to a given IP address; this could be fairly long lived if it's mainly a friends ADSL line which may change periodically (say 24 or 48), or fairly short if you worry about a subsequent user on the same PC as you were surfing from (say 1 or 2). | 24h |
| leasefile | The name of the leases file. This will be in the location specified by the leasedir option in the fsloc (file system locations) section, unless that doesn't exist, in which case it'll be created in /tmp. This file is in the same format as the permanent access control list in the Wacs configuration directory. | leases.acl |