From owner-freebsd-small@FreeBSD.ORG Mon Oct 17 11:02:06 2005 Return-Path: X-Original-To: freebsd-small@freebsd.org Delivered-To: freebsd-small@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5213C16A41F for ; Mon, 17 Oct 2005 11:02:06 +0000 (GMT) (envelope-from owner-bugmaster@freebsd.org) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0D47D43D53 for ; Mon, 17 Oct 2005 11:02:06 +0000 (GMT) (envelope-from owner-bugmaster@freebsd.org) Received: from freefall.freebsd.org (peter@localhost [127.0.0.1]) by freefall.freebsd.org (8.13.3/8.13.3) with ESMTP id j9HB25t1022507 for ; Mon, 17 Oct 2005 11:02:05 GMT (envelope-from owner-bugmaster@freebsd.org) Received: (from peter@localhost) by freefall.freebsd.org (8.13.3/8.13.1/Submit) id j9HB25ui022501 for freebsd-small@freebsd.org; Mon, 17 Oct 2005 11:02:05 GMT (envelope-from owner-bugmaster@freebsd.org) Date: Mon, 17 Oct 2005 11:02:05 GMT Message-Id: <200510171102.j9HB25ui022501@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: peter set sender to owner-bugmaster@freebsd.org using -f From: FreeBSD bugmaster To: freebsd-small@FreeBSD.org Cc: Subject: Current problem reports assigned to you X-BeenThere: freebsd-small@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Dedicated and Embedded Systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Oct 2005 11:02:06 -0000 Current FreeBSD problem reports Critical problems Serious problems Non-critical problems S Submitted Tracker Resp. Description ------------------------------------------------------------------------------- o [2000/01/04] misc/15876 small PicoBSD message of the day problems o [2001/06/18] misc/28255 small picobsd documentation still references ol o [2002/09/13] kern/42728 small many problems in src/usr.sbin/ppp/* afte o [2003/05/14] misc/52255 small picobsd build script fails under FreeBSD o [2003/05/14] misc/52256 small picobsd build script does not read in use 5 problems total. From owner-freebsd-small@FreeBSD.ORG Mon Oct 17 13:42:58 2005 Return-Path: X-Original-To: small@freebsd.org Delivered-To: freebsd-small@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9F37516A41F for ; Mon, 17 Oct 2005 13:42:58 +0000 (GMT) (envelope-from mwlucas@bewilderbeast.blackhelicopters.org) Received: from bewilderbeast.blackhelicopters.org (bewilderbeast.blackhelicopters.org [198.22.63.43]) by mx1.FreeBSD.org (Postfix) with ESMTP id 38E0443D53 for ; Mon, 17 Oct 2005 13:42:58 +0000 (GMT) (envelope-from mwlucas@bewilderbeast.blackhelicopters.org) Received: from bewilderbeast.blackhelicopters.org (mwlucas@localhost [127.0.0.1]) by bewilderbeast.blackhelicopters.org (8.12.10/8.12.10) with ESMTP id j9HDgvMm075035 for ; Mon, 17 Oct 2005 09:42:57 -0400 (EDT) (envelope-from mwlucas@bewilderbeast.blackhelicopters.org) Received: (from mwlucas@localhost) by bewilderbeast.blackhelicopters.org (8.12.10/8.12.10/Submit) id j9HDgv5Z075034 for small@freebsd.org; Mon, 17 Oct 2005 09:42:57 -0400 (EDT) (envelope-from mwlucas) Date: Mon, 17 Oct 2005 09:42:57 -0400 From: "Michael W. Lucas" To: small@freebsd.org Message-ID: <20051017134257.GA74997@bewilderbeast.blackhelicopters.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.1i X-Spam-Score: (0) X-Scanned-By: MIMEDefang 2.39 Cc: Subject: Separate password files on diskless boxes? X-BeenThere: freebsd-small@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Dedicated and Embedded Systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Oct 2005 13:42:58 -0000 Hi, I'm using nanobsd.sh on 6.0RC to provide a small world for diskless boxes. These are for small single-purpose machines -- i.e., DNS server, FTP server, etc, served off read-only NFS. Nothing exciting there, it just works. The last problem I'm having is the password file. I need to assign separate password files to each, and separate root passwords on each diskless station. The problem, of course, is the MFS /etc, so changes are not permanent. Is there any way to make passwd(1) talk to a different password file? I really don't want to use read/write mounts on my NFS server. Or, has anyone come up with a clever way to do this? All the tutorials in Google talk about using the server's password file, which I specifically don't want to do... Thanks! ==ml -- Michael W. Lucas mwlucas@FreeBSD.org, mwlucas@BlackHelicopters.org http://www.BlackHelicopters.org/~mwlucas/ "The cloak of anonymity protects me from the nuisance of caring." -Non Sequitur From owner-freebsd-small@FreeBSD.ORG Mon Oct 17 14:05:41 2005 Return-Path: X-Original-To: freebsd-small@freebsd.org Delivered-To: freebsd-small@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4102416A41F for ; Mon, 17 Oct 2005 14:05:41 +0000 (GMT) (envelope-from small@dino.sk) Received: from bsd.dino.sk (bsd.dino.sk [213.215.72.60]) by mx1.FreeBSD.org (Postfix) with ESMTP id 91ADC43D48 for ; Mon, 17 Oct 2005 14:05:39 +0000 (GMT) (envelope-from small@dino.sk) Received: from [172.16.39.201] ([213.215.72.45]) by bsd.dino.sk with esmtp; Mon, 17 Oct 2005 16:06:05 +0200 id 0000002F.4353AFCE.00012D98 From: Milan Obuch To: freebsd-small@freebsd.org Date: Mon, 17 Oct 2005 16:06:43 +0200 User-Agent: KMail/1.7.2 References: <20051017134257.GA74997@bewilderbeast.blackhelicopters.org> In-Reply-To: <20051017134257.GA74997@bewilderbeast.blackhelicopters.org> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200510171606.43796.small@dino.sk> Subject: Re: Separate password files on diskless boxes? X-BeenThere: freebsd-small@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Dedicated and Embedded Systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Oct 2005 14:05:41 -0000 On Monday 17 October 2005 15:42, Michael W. Lucas wrote: > Hi, > > I'm using nanobsd.sh on 6.0RC to provide a small world for diskless > boxes. These are for small single-purpose machines -- i.e., DNS > server, FTP server, etc, served off read-only NFS. Nothing exciting > there, it just works. > > The last problem I'm having is the password file. I need to assign > separate password files to each, and separate root passwords on each > diskless station. The problem, of course, is the MFS /etc, so changes > are not permanent. > > Is there any way to make passwd(1) talk to a different password file? > I really don't want to use read/write mounts on my NFS server. Or, > has anyone come up with a clever way to do this? All the tutorials in > Google talk about using the server's password file, which I > specifically don't want to do... > > Thanks! > You could install separate file when you create MFS filesystem. We solve similar issue with script saving changed /etc/master.passwd elsewhere. This file is read when booting. Regards, Milan From owner-freebsd-small@FreeBSD.ORG Mon Oct 17 17:33:38 2005 Return-Path: X-Original-To: small@freebsd.org Delivered-To: freebsd-small@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A5B2016A420 for ; Mon, 17 Oct 2005 17:33:38 +0000 (GMT) (envelope-from chad@DCFinc.com) Received: from freebie.dcfinc.com (freebie.dcfinc.com [205.159.99.240]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3FF5643D67 for ; Mon, 17 Oct 2005 17:33:38 +0000 (GMT) (envelope-from chad@DCFinc.com) Received: from freebie.dcfinc.com (chad@localhost.dcfinc.com [127.0.0.1]) by freebie.dcfinc.com (8.13.1/8.13.1) with ESMTP id j9HHXGSv003420; Mon, 17 Oct 2005 10:33:16 -0700 (MST) (envelope-from chad@freebie.dcfinc.com) Received: (from chad@localhost) by freebie.dcfinc.com (8.13.1/8.12.11/Submit) id j9HHXFaI003419; Mon, 17 Oct 2005 10:33:15 -0700 (MST) (envelope-from chad) Date: Mon, 17 Oct 2005 10:33:15 -0700 From: "Chad R. Larson" To: "Michael W. Lucas" Message-ID: <20051017173315.GA3351@freebie.dcfinc.com> References: <20051017134257.GA74997@bewilderbeast.blackhelicopters.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20051017134257.GA74997@bewilderbeast.blackhelicopters.org> User-Agent: Mutt/1.4.2.1i Cc: small@freebsd.org Subject: Re: Separate password files on diskless boxes? X-BeenThere: freebsd-small@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Dedicated and Embedded Systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Oct 2005 17:33:38 -0000 On Mon, Oct 17, 2005 at 09:42:57AM -0400, Michael W. Lucas wrote: > Is there any way to make passwd(1) talk to a different password file? > I really don't want to use read/write mounts on my NFS server. Or, > has anyone come up with a clever way to do this? man -k nis -crl -- Chad R. Larson (CRL15) 602-264-5009 chad@DCFinc.com Else: chad@larsons.org http://public.xdi.org/=Chad.R.Larson DCF, Inc., 1701 East Colter Street, Phoenix, Arizona 85016-3381 From owner-freebsd-small@FreeBSD.ORG Mon Oct 17 17:55:01 2005 Return-Path: X-Original-To: small@freebsd.org Delivered-To: freebsd-small@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B275616A41F for ; Mon, 17 Oct 2005 17:55:01 +0000 (GMT) (envelope-from kudzu@tenebras.com) Received: from tenebras.com (hospital.tenebras.com [216.27.179.43]) by mx1.FreeBSD.org (Postfix) with SMTP id 6A39043D45 for ; Mon, 17 Oct 2005 17:55:01 +0000 (GMT) (envelope-from kudzu@tenebras.com) Received: (qmail 25459 invoked from network); 17 Oct 2005 17:55:00 -0000 Received: from sapphire.tenebras.com (HELO ?127.0.0.1?) (192.168.188.241) by hospital.tenebras.com with SMTP; 17 Oct 2005 17:55:00 -0000 Message-ID: <4353E564.4020304@tenebras.com> Date: Mon, 17 Oct 2005 10:54:44 -0700 From: Michael Sierchio User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206) X-Accept-Language: en-us, en MIME-Version: 1.0 References: <20051017134257.GA74997@bewilderbeast.blackhelicopters.org> <20051017173315.GA3351@freebie.dcfinc.com> In-Reply-To: <20051017173315.GA3351@freebie.dcfinc.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: small@freebsd.org Subject: Re: Separate password files on diskless boxes? X-BeenThere: freebsd-small@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Dedicated and Embedded Systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Oct 2005 17:55:01 -0000 Chad R. Larson wrote: > man -k nis NIS, RADIUS, Kerberos, etc. From owner-freebsd-small@FreeBSD.ORG Mon Oct 17 18:45:22 2005 Return-Path: X-Original-To: small@freebsd.org Delivered-To: freebsd-small@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 911FE16A41F for ; Mon, 17 Oct 2005 18:45:22 +0000 (GMT) (envelope-from molter@tin.it) Received: from vsmtp2.tin.it (vsmtp2alice.tin.it [212.216.176.142]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1015E43D55 for ; Mon, 17 Oct 2005 18:45:21 +0000 (GMT) (envelope-from molter@tin.it) Received: from tortellino.codalunga (82.122.112.130) by vsmtp2.tin.it (7.2.060.1) (authenticated as molter@tin.it) id 43521106000BDF85; Mon, 17 Oct 2005 20:45:06 +0200 Received: by tortellino.codalunga (Postfix, from userid 1001) id 930D882F0; Mon, 17 Oct 2005 20:46:34 +0200 (CEST) Date: Mon, 17 Oct 2005 20:46:34 +0200 From: Marco Molteni To: "Michael W. Lucas" Message-Id: <20051017204634.42bca795.molter@tin.it> In-Reply-To: <20051017134257.GA74997@bewilderbeast.blackhelicopters.org> References: <20051017134257.GA74997@bewilderbeast.blackhelicopters.org> X-Mailer: Sylpheed version 1.0.5 (GTK+ 1.2.10; i386-portbld-freebsd6.0) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Cc: small@freebsd.org Subject: Re: Separate password files on diskless boxes? X-BeenThere: freebsd-small@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Dedicated and Embedded Systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Oct 2005 18:45:22 -0000 On Mon, 17 Oct 2005 09:42:57 -0400 "Michael W. Lucas" wrote: > I'm using nanobsd.sh on 6.0RC to provide a small world for diskless > boxes. These are for small single-purpose machines -- i.e., DNS > server, FTP server, etc, served off read-only NFS. Nothing exciting > there, it just works. > > The last problem I'm having is the password file. I need to assign > separate password files to each, and separate root passwords on each > diskless station. The problem, of course, is the MFS /etc, so changes > are not permanent. > > Is there any way to make passwd(1) talk to a different password file? > I really don't want to use read/write mounts on my NFS server. Or, > has anyone come up with a clever way to do this? All the tutorials in > Google talk about using the server's password file, which I > specifically don't want to do... you can use the /conf override directory as explained in man diskless: /conf/default/10.0.0.1/etc/master.passwd /conf/default/10.0.0.1/etc/passwd /conf/default/10.0.0.2/etc/master.passwd /conf/default/10.0.0.2/etc/passwd and so on. marco -- He who receives an idea from me, receives instruction himself without lessening mine; as he who lights his taper at mine, receives light without darkening me. -- Thomas Jefferson From owner-freebsd-small@FreeBSD.ORG Mon Oct 17 18:50:01 2005 Return-Path: X-Original-To: small@freebsd.org Delivered-To: freebsd-small@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1A8E016A420 for ; Mon, 17 Oct 2005 18:50:01 +0000 (GMT) (envelope-from mwlucas@bewilderbeast.blackhelicopters.org) Received: from bewilderbeast.blackhelicopters.org (bewilderbeast.blackhelicopters.org [198.22.63.43]) by mx1.FreeBSD.org (Postfix) with ESMTP id CEEF243D76 for ; Mon, 17 Oct 2005 18:49:51 +0000 (GMT) (envelope-from mwlucas@bewilderbeast.blackhelicopters.org) Received: from bewilderbeast.blackhelicopters.org (mwlucas@localhost [127.0.0.1]) by bewilderbeast.blackhelicopters.org (8.12.10/8.12.10) with ESMTP id j9HInnMm077083; Mon, 17 Oct 2005 14:49:50 -0400 (EDT) (envelope-from mwlucas@bewilderbeast.blackhelicopters.org) Received: (from mwlucas@localhost) by bewilderbeast.blackhelicopters.org (8.12.10/8.12.10/Submit) id j9HInn7t077082; Mon, 17 Oct 2005 14:49:49 -0400 (EDT) (envelope-from mwlucas) Date: Mon, 17 Oct 2005 14:49:49 -0400 From: "Michael W. Lucas" To: Marco Molteni Message-ID: <20051017184949.GA77066@bewilderbeast.blackhelicopters.org> References: <20051017134257.GA74997@bewilderbeast.blackhelicopters.org> <20051017204634.42bca795.molter@tin.it> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20051017204634.42bca795.molter@tin.it> User-Agent: Mutt/1.4.1i X-Spam-Score: (0) X-Scanned-By: MIMEDefang 2.39 Cc: "Michael W. Lucas" , small@freebsd.org Subject: Re: Separate password files on diskless boxes? X-BeenThere: freebsd-small@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Dedicated and Embedded Systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Oct 2005 18:50:01 -0000 On Mon, Oct 17, 2005 at 08:46:34PM +0200, Marco Molteni wrote: > On Mon, 17 Oct 2005 09:42:57 -0400 > "Michael W. Lucas" wrote: > > > I'm using nanobsd.sh on 6.0RC to provide a small world for diskless > > boxes. These are for small single-purpose machines -- i.e., DNS > > server, FTP server, etc, served off read-only NFS. Nothing exciting > > there, it just works. > > > > The last problem I'm having is the password file. I need to assign > > separate password files to each, and separate root passwords on each > > diskless station. The problem, of course, is the MFS /etc, so changes > > are not permanent. > > > > Is there any way to make passwd(1) talk to a different password file? > > I really don't want to use read/write mounts on my NFS server. Or, > > has anyone come up with a clever way to do this? All the tutorials in > > Google talk about using the server's password file, which I > > specifically don't want to do... > > you can use the /conf override directory as explained in > man diskless: > > /conf/default/10.0.0.1/etc/master.passwd > /conf/default/10.0.0.1/etc/passwd > > /conf/default/10.0.0.2/etc/master.passwd > /conf/default/10.0.0.2/etc/passwd Yes, but on boot /etc/ is a MFS. I can change the password, but on the next boot it reverts back to whatever's saved on the hard drive. I'd like to avoid doing kerberos or NIS for half a dozen little boxes, but if that's the only choice that's what I'll have to do. -- Michael W. Lucas mwlucas@FreeBSD.org, mwlucas@BlackHelicopters.org http://www.BlackHelicopters.org/~mwlucas/ "The cloak of anonymity protects me from the nuisance of caring." -Non Sequitur From owner-freebsd-small@FreeBSD.ORG Mon Oct 17 19:00:30 2005 Return-Path: X-Original-To: small@freebsd.org Delivered-To: freebsd-small@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1B5BE16A423 for ; Mon, 17 Oct 2005 19:00:30 +0000 (GMT) (envelope-from kudzu@tenebras.com) Received: from tenebras.com (hospital.tenebras.com [216.27.179.43]) by mx1.FreeBSD.org (Postfix) with SMTP id 88A4A43D4C for ; Mon, 17 Oct 2005 19:00:29 +0000 (GMT) (envelope-from kudzu@tenebras.com) Received: (qmail 26505 invoked from network); 17 Oct 2005 19:00:29 -0000 Received: from sapphire.tenebras.com (HELO ?127.0.0.1?) (192.168.188.241) by hospital.tenebras.com with SMTP; 17 Oct 2005 19:00:29 -0000 Message-ID: <4353F4BC.7070306@tenebras.com> Date: Mon, 17 Oct 2005 12:00:12 -0700 From: Michael Sierchio User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206) X-Accept-Language: en-us, en MIME-Version: 1.0 To: "Michael W. Lucas" , small@freebsd.org References: <20051017134257.GA74997@bewilderbeast.blackhelicopters.org> <20051017204634.42bca795.molter@tin.it> <20051017184949.GA77066@bewilderbeast.blackhelicopters.org> In-Reply-To: <20051017184949.GA77066@bewilderbeast.blackhelicopters.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: Subject: Re: Separate password files on diskless boxes? X-BeenThere: freebsd-small@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Dedicated and Embedded Systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Oct 2005 19:00:30 -0000 > I'd like to avoid doing kerberos or NIS for half a dozen little boxes, > but if that's the only choice that's what I'll have to do. RADIUS is probably much simpler, man pam_radius. From owner-freebsd-small@FreeBSD.ORG Mon Oct 17 21:21:05 2005 Return-Path: X-Original-To: small@freebsd.org Delivered-To: freebsd-small@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 770A116A41F for ; Mon, 17 Oct 2005 21:21:05 +0000 (GMT) (envelope-from brdavis@odin.ac.hmc.edu) Received: from odin.ac.hmc.edu (Odin.AC.HMC.Edu [134.173.32.75]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1C08B43D45 for ; Mon, 17 Oct 2005 21:21:04 +0000 (GMT) (envelope-from brdavis@odin.ac.hmc.edu) Received: from odin.ac.hmc.edu (localhost.localdomain [127.0.0.1]) by odin.ac.hmc.edu (8.13.0/8.13.0) with ESMTP id j9HLL2Xa020908; Mon, 17 Oct 2005 14:21:02 -0700 Received: (from brdavis@localhost) by odin.ac.hmc.edu (8.13.0/8.13.0/Submit) id j9HLL1Ko020907; Mon, 17 Oct 2005 14:21:01 -0700 Date: Mon, 17 Oct 2005 14:21:01 -0700 From: Brooks Davis To: "Michael W. Lucas" Message-ID: <20051017212101.GF15097@odin.ac.hmc.edu> References: <20051017134257.GA74997@bewilderbeast.blackhelicopters.org> <20051017204634.42bca795.molter@tin.it> <20051017184949.GA77066@bewilderbeast.blackhelicopters.org> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="sDKAb4OeUBrWWL6P" Content-Disposition: inline In-Reply-To: <20051017184949.GA77066@bewilderbeast.blackhelicopters.org> User-Agent: Mutt/1.4.1i X-Virus-Scanned: by amavisd-new X-Spam-Status: No, hits=0.0 required=8.0 tests=none autolearn=no version=2.63 X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on odin.ac.hmc.edu Cc: small@freebsd.org Subject: Re: Separate password files on diskless boxes? X-BeenThere: freebsd-small@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Dedicated and Embedded Systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Oct 2005 21:21:05 -0000 --sDKAb4OeUBrWWL6P Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Oct 17, 2005 at 02:49:49PM -0400, Michael W. Lucas wrote: > On Mon, Oct 17, 2005 at 08:46:34PM +0200, Marco Molteni wrote: > > On Mon, 17 Oct 2005 09:42:57 -0400 > > "Michael W. Lucas" wrote: > >=20 > > > I'm using nanobsd.sh on 6.0RC to provide a small world for diskless > > > boxes. These are for small single-purpose machines -- i.e., DNS > > > server, FTP server, etc, served off read-only NFS. Nothing exciting > > > there, it just works. > > >=20 > > > The last problem I'm having is the password file. I need to assign > > > separate password files to each, and separate root passwords on each > > > diskless station. The problem, of course, is the MFS /etc, so changes > > > are not permanent. > > >=20 > > > Is there any way to make passwd(1) talk to a different password file? > > > I really don't want to use read/write mounts on my NFS server. Or, > > > has anyone come up with a clever way to do this? All the tutorials in > > > Google talk about using the server's password file, which I > > > specifically don't want to do... > >=20 > > you can use the /conf override directory as explained in > > man diskless: > >=20 > > /conf/default/10.0.0.1/etc/master.passwd > > /conf/default/10.0.0.1/etc/passwd > >=20 > > /conf/default/10.0.0.2/etc/master.passwd > > /conf/default/10.0.0.2/etc/passwd >=20 > Yes, but on boot /etc/ is a MFS. >=20 > I can change the password, but on the next boot it reverts back to > whatever's saved on the hard drive. >=20 > I'd like to avoid doing kerberos or NIS for half a dozen little boxes, > but if that's the only choice that's what I'll have to do. For a one off setup, change the password and then copy the resulting password files to /conf by hand. -- Brooks --=20 Any statement of the form "X is the one, true Y" is FALSE. PGP fingerprint 655D 519C 26A7 82E7 2529 9BF0 5D8E 8BE9 F238 1AD4 --sDKAb4OeUBrWWL6P Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD8DBQFDVBW9XY6L6fI4GtQRAoycAKCoA90YaZgDdRo21JK8TxcLR0+74wCfSKV4 OxEeXIpkd5Y3NAvUC8gFRak= =hKLg -----END PGP SIGNATURE----- --sDKAb4OeUBrWWL6P-- From owner-freebsd-small@FreeBSD.ORG Tue Oct 18 04:21:15 2005 Return-Path: X-Original-To: freebsd-small@freebsd.org Delivered-To: freebsd-small@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 476F516A41F for ; Tue, 18 Oct 2005 04:21:15 +0000 (GMT) (envelope-from small@dino.sk) Received: from bsd.dino.sk (bsd.dino.sk [213.215.72.60]) by mx1.FreeBSD.org (Postfix) with ESMTP id AB92A43D46 for ; Tue, 18 Oct 2005 04:21:13 +0000 (GMT) (envelope-from small@dino.sk) Received: from home.dino.sk ([213.215.74.194]) (AUTH: PLAIN milan, SSL: TLSv1/SSLv3,128bits,RC4-MD5) by bsd.dino.sk with esmtp; Tue, 18 Oct 2005 06:21:40 +0200 id 00000048.43547855.00016081 From: Milan Obuch To: freebsd-small@freebsd.org Date: Tue, 18 Oct 2005 06:19:55 +0200 User-Agent: KMail/1.8.2 References: <20051017134257.GA74997@bewilderbeast.blackhelicopters.org> <20051017184949.GA77066@bewilderbeast.blackhelicopters.org> <20051017212101.GF15097@odin.ac.hmc.edu> In-Reply-To: <20051017212101.GF15097@odin.ac.hmc.edu> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-6" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200510180620.06291.small@dino.sk> Subject: Re: Separate password files on diskless boxes? X-BeenThere: freebsd-small@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Dedicated and Embedded Systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Oct 2005 04:21:15 -0000 On Monday 17 October 2005 23:21, Brooks Davis wrote: > On Mon, Oct 17, 2005 at 02:49:49PM -0400, Michael W. Lucas wrote: > > On Mon, Oct 17, 2005 at 08:46:34PM +0200, Marco Molteni wrote: > > > On Mon, 17 Oct 2005 09:42:57 -0400 > > > > > > "Michael W. Lucas" wrote: > > > > I'm using nanobsd.sh on 6.0RC to provide a small world for diskless > > > > boxes. These are for small single-purpose machines -- i.e., DNS > > > > server, FTP server, etc, served off read-only NFS. Nothing exciting > > > > there, it just works. > > > > > > > > The last problem I'm having is the password file. I need to assign > > > > separate password files to each, and separate root passwords on each > > > > diskless station. The problem, of course, is the MFS /etc, so > > > > changes are not permanent. > > > > > > > > Is there any way to make passwd(1) talk to a different password file? > > > > I really don't want to use read/write mounts on my NFS server. Or, > > > > has anyone come up with a clever way to do this? All the tutorials > > > > in Google talk about using the server's password file, which I > > > > specifically don't want to do... > > > > > > you can use the /conf override directory as explained in > > > man diskless: > > > > > > /conf/default/10.0.0.1/etc/master.passwd > > > /conf/default/10.0.0.1/etc/passwd > > > > > > /conf/default/10.0.0.2/etc/master.passwd > > > /conf/default/10.0.0.2/etc/passwd > > > > Yes, but on boot /etc/ is a MFS. > > > > I can change the password, but on the next boot it reverts back to > > whatever's saved on the hard drive. > > > > I'd like to avoid doing kerberos or NIS for half a dozen little boxes, > > but if that's the only choice that's what I'll have to do. > > For a one off setup, change the password and then copy the resulting > password files to /conf by hand. > > I think you need a script comparing your running config files to the startup ones and update startup if necessary. This could mean not only passwords, naturally. Milan