From owner-freebsd-security@FreeBSD.ORG  Tue May 27 18:55:01 2003
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 6296537B401
	for <FreeBSD-Security@freebsd.org>;
	Tue, 27 May 2003 18:55:01 -0700 (PDT)
Received: from lily.ezo.net (nsc.ezo.net [68.23.200.13])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 9043743FA3
	for <FreeBSD-Security@freebsd.org>;
	Tue, 27 May 2003 18:55:00 -0700 (PDT)
	(envelope-from jflowers@ezo.net)
Received: from new.ezo.net (peony.ezo.net [68.23.200.11])
	by lily.ezo.net (8.12.6/8.12.6) with ESMTP id h4S1t7df030258
	for <FreeBSD-Security@freebsd.org>;
	Tue, 27 May 2003 21:55:07 -0400 (EDT)
	(envelope-from jflowers@ezo.net)
From: "Jim Flowers" <jflowers@ezo.net>
To: FreeBSD Security <FreeBSD-Security@freebsd.org>
Date: Tue, 27 May 2003 20:55:06 -0500
Message-Id: <20030528014723.M10167@ezo.net>
In-Reply-To: <XFMail.20030527161329.ah60@httpsite.com>
References: <3ED3BDA1.5020605@centtech.com>
	<XFMail.20030527161329.ah60@httpsite.com>
X-Mailer: Open WebMail 1.90 20030310
X-OriginatingIP: 24.93.231.122 (jflowers)
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Subject: Re: multihost master.passwd sync
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Security issues [members-only posting]
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 28 May 2003 01:55:01 -0000

Well, I know the concept will be ridiculed (so be it) but I've just started 
looking at the webmin cluster users/goups that provides synchronizing passwd 
files on multiple hosts on an all or part basis as being appropriate for my 
needs.  Seems to work OK for a thousand or two users though I don't know how 
scalable it is but I haven't yet started looking at the security implications 
of current webmin design.

--
Jim Flowers<jflowers@ezo.net>

---------- Original Message -----------
From: Andy Harrison <ah60@httpsite.com>
To: FreeBSD Security <FreeBSD-Security@freebsd.org>
Sent: Tue, 27 May 2003 16:13:29 -0400 (EDT)
Subject: Re: multihost master.passwd sync

> -----BEGIN PGP SIGNED MESSAGE-----
> 
> ~
> On 27-May-2003, Eric Anderson wrote message "Re: multihost 
> master.passwd sync" ~
> >> Root can't scp a file from one host to another where remote root login is
> >> not
> >> allowed.  
> > 
>