3.8.1p1 option "permitopennet" added

[Bucaille, Lionel]

Hello,

I send you a small patch about a "new" option called "permitopennet".
The behaviour is the same as "permitopen" except the accept/deny
statement is based on this syntax : "netblock/netmask:porta[-portb]".

Moreover, I also added some useful log lines : the uid is logged while
doing port forwarding.

Sample conf : 

permitopennet="158.156.156.128/255.255.255.128:25-1024" ssh-dss
AAAAB3NzaC1kc3MAAACAbAehy7ov+HQvaSalGdJaNA3YAunrEIT3sqNqqs8CVIAgv2p ...

Logs :

eym59365 (uid:620) requests to connect to host 158.156.156.70 port 80,
but the request was denied.

eym59365 (uid:620) requests to connect to host 158.156.156.251 port 80,
and the request was accepted.

Waiting for your remarks or comments.

Lionel.



Ce message et toutes les pieces jointes (ci-apres le < message >) sont confidentiels et etablis a l'intention exclusive de ses destinataires. Toute utilisation de ce message non conforme a sa destination, toute diffusion ou toute publication, totale ou partielle, est interdite, sauf autorisation expresse. Si vous recevez ce message par erreur, merci de le detruire sans en conserver de copie et d'en avertir immediatement l'expediteur. Internet ne permettant pas de garantir l'integrite de ce message, la Caisse des depots et consignations decline toute responsabilite au titre de ce message s'il a ete modifie, altere, deforme ou falsifie.

This message and any attachments (the < message >) are confidential and intended solely for the addresses. Any use not in accord with its purpose, any dissemination or disclosure, either whole or partial, is prohibited without formal approval. If you receive this message in error, please delete it without storing any evidence and immediately notify the sender. Internet can not guarantee the integrity of this message, neither shall Caisse des depots et consignations be liable for the message if modified, altered, changed or falsified.