Re: portable passwords?

Jeffry_Smith Thu, 16 Mar 2000 06:42:35 -0800

OK, related question - anyone using OpenLDAP for more than a single machine to
synchronize password (I've played around with it, doing the quick scripts to
make a single machine use LDAP as well as files)?

jeff smith



                                                                                
                                                                                
                                                                                


                                                              
                                                              
                                                              
 To:      Rich Payne <[EMAIL PROTECTED]>            
                                                              
 cc:      "Kenneth E. Lussier" <[EMAIL PROTECTED]>,     
          [EMAIL PROTECTED](bcc: Jeffry Smith/CORP/HPHC)     
                                                              
                                                              
                                                              
 Subject: Re: portable passwords?                             
                                                              







Today, Rich Payne gleaned this insight:

> You should be OK provided, all use the same way of encrypting the password
> (like coping from RH 6.1 to RH61 should be fine), and that they both
> use/don't use shadow password.
>
> You could also use NIS for this, which
> would mean you'd only have to change your password once, however if this
> isn't an internal protected machine then NIS isn't a good choice.

The bible (_Unix_System_Administrator's_Handbook_, Nemeth et. al.)
recommends against NIS, and frankly I do to.  It's really convenient when
it works, but it's a GIGANTIC PIA when something breaks.  It's also
riddled with security holes.

rdist/rsync allows you to distribute system files by copying, is
relatively easy to maintain, and you don't have to worry about your entire
environment breaking if something happens to your NIS server(s).  NIS has
given me more than a couple of headaches.  I'm hoping to get away from
using it at my shop ASAP!


--
PGP/GPG Public key at http://cerberus.ne.mediaone.net/~derek/pubkey.txt
------------------------------------------------------
Derek D. Martin      |  Unix/Linux Geek
[EMAIL PROTECTED]  |  [EMAIL PROTECTED]
------------------------------------------------------


**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************



**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************
Re: portable passwords?

Reply via email to
