From owner-freebsd-security@FreeBSD.ORG Tue May 27 23:33:25 2003 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6652437B404 for ; Tue, 27 May 2003 23:33:25 -0700 (PDT) Received: from gandalf.online.bg (gandalf.online.bg [217.75.128.9]) by mx1.FreeBSD.org (Postfix) with SMTP id 73BA943F3F for ; Tue, 27 May 2003 23:33:21 -0700 (PDT) (envelope-from roam@ringlet.net) Received: (qmail 32490 invoked from network); 28 May 2003 06:26:51 -0000 Received: from office.sbnd.net (HELO straylight.ringlet.net) (217.75.140.130) by gandalf.online.bg with SMTP; 28 May 2003 06:26:50 -0000 Received: (qmail 2179 invoked by uid 1000); 28 May 2003 06:36:27 -0000 Date: Wed, 28 May 2003 09:36:27 +0300 From: Peter Pentchev To: Andy Harrison Message-ID: <20030528063627.GB667@straylight.oblivion.bg> Mail-Followup-To: Andy Harrison , freebsd-security@FreeBSD.org References: <20030528063517.GA667@straylight.oblivion.bg> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="MW5yreqqjyrRcusr" Content-Disposition: inline In-Reply-To: <20030528063517.GA667@straylight.oblivion.bg> User-Agent: Mutt/1.5.4i cc: freebsd-security@FreeBSD.org Subject: Re: multihost master.passwd sync X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 28 May 2003 06:33:25 -0000 --MW5yreqqjyrRcusr Content-Type: text/plain; charset=windows-1251 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, May 28, 2003 at 09:35:17AM +0300, Peter Pentchev wrote: > On Tue, May 27, 2003 at 01:46:37PM -0400, Andy Harrison wrote: > >=20 > > Just wondered if anyone had any suggestions about syncing up master.pas= swd > > files between multiple machines that didn't involve allowing root login > > remotely? The users need to be able to log in remotely and own files o= n the > > different machines. >=20 > People have mentioned LDAP; I am truly surprised no one has mentioned > Kerberos yet. Oh wait, nevermind. That's what I get for posting before coffee; Kerberos still needs some way of telling the system that there is such a user in the first place. G'luck, Peter --=20 Peter Pentchev roam@ringlet.net roam@sbnd.net roam@FreeBSD.org PGP key: http://people.FreeBSD.org/~roam/roam.key.asc Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553 This sentence contradicts itself - or rather - well, no, actually it doesn'= t! --MW5yreqqjyrRcusr Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (FreeBSD) iD8DBQE+1Fjr7Ri2jRYZRVMRAvNpAKCvsE8AdIxYPjucZDNoqVBI1NA9HgCfbYw/ uvGH63MWW5mJgr1IB1tIVy0= =fZHY -----END PGP SIGNATURE----- --MW5yreqqjyrRcusr--