unless your network is really locked down, the scenario Winelfred pointed out is one of those security problems for NIS/NFS.
it might be better to use NFSv4 with Kerberos authentication and go the LDAP+Kerberos route for directory services and authentication (ala ActiveDirectory). NIS over Kerberos would probably work too(?), but using LDAP opens up more possibilities for single sign on across apps. for some good notes on Single Sign On... http://help.ubuntu.com/community/SingleSignOn with links inside for NFSv4. here's a good howto on replacing NIS with LDAP/Kerberos. http://www.aput.net/~jheiss/krbldap/howto.html On Wed, Jan 13, 2010 at 12:00 AM, Winelfred G. Pasamba <[email protected]> wrote: > is it still true or has it changed, that you could bring your own > laptop and plug it to the network and as root on your own machine, > mount the home directories of the server via nfs and do whatever you > want with the homes? > > On Tue, Jan 12, 2010 at 3:21 PM, Ramil Galib <[email protected]> wrote: >> we authenticate users through nis >> and mount home directories through nfs -- eric pareja ([email protected]) LPIC-2 | PGP/GPG Key 0xB82E42D9 Coordinator for Technology / Senior Linux Trainer National Telehealth Center, University of the Philippines Manila International Open Source Network - ASEAN+3 "Ang mundo ay aklat, at iisang pahina lamang ang nababasa ng hindi naglalakbay." - San Agustin わかよたれぞ つねならむ _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List http://lists.linux.org.ph/mailman/listinfo/plug Searchable Archives: http://archives.free.net.ph
