-Access control is entirely used-based. If you configure DisOrder to listen for
-TCP/IP connections then it will accept a connection from anywhere provided the
-right password is available. Passwords are never transmitted over TCP/IP
-connections in clear, but everything else is. The expected model is that
-host-based access control is imposed at the network layer.
+The full set of rights are:
+.TP
+.B read
+User can perform read-only operations
+.TP
+.B play
+User can add tracks to the queue
+.TP
+.B "move any"
+User can move any track
+.TP
+.B "move mine"
+User can move their own tracks
+.TP
+.B "move random"
+User can move randomly chosen tracks
+.TP
+.B "remove any"
+User can remove any track
+.TP
+.B "remove mine"
+User can remove their own tracks
+.TP
+.B "remove random"
+User can remove randomly chosen tracks
+.TP
+.B "scratch any"
+User can scratch any track
+.TP
+.B "scratch mine"
+User can scratch their own tracks
+.TP
+.B "scratch random"
+User can scratch randomly chosen tracks
+.TP
+.B volume
+User can change the volume
+.TP
+.B admin
+User can perform admin operations
+.TP
+.B rescan
+User can initiate a rescan
+.TP
+.B register
+User can register new users.
+Normally only the
+.B guest
+user would have this right.
+.TP
+.B userinfo
+User can edit their own userinfo
+.TP
+.B prefs
+User can modify track preferences
+.TP
+.B "global prefs"
+User can modify global preferences
+.TP
+.B pause
+User can pause/resume
+.PP
+Access control is entirely used-based.
+If you configure DisOrder to listen for TCP/IP connections then it will
+accept a connection from anywhere provided the right password is
+available.
+Passwords are never transmitted over TCP/IP connections in clear,
+but everything else is.
+The expected model is that host-based access control is imposed at
+the network layer.