From owner-freebsd-isp  Mon Jun  1 21:14:16 1998
Return-Path: <owner-freebsd-isp@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id VAA02057
          for freebsd-isp-outgoing; Mon, 1 Jun 1998 21:14:16 -0700 (PDT)
          (envelope-from owner-freebsd-isp@FreeBSD.ORG)
Received: from chipweb.ml.org (qmailr@c1003518-a.plstn1.sfba.home.com [24.1.82.47])
          by hub.freebsd.org (8.8.8/8.8.8) with SMTP id VAA01988
          for <isp@freebsd.org>; Mon, 1 Jun 1998 21:14:01 -0700 (PDT)
          (envelope-from ludwigp@bigfoot.com)
Received: (qmail 25197 invoked by uid 666); 2 Jun 1998 04:13:43 -0000
Received: from unknown (HELO speedy.chipweb.ml.org) (172.16.1.1)
  by 172.16.1.5 with SMTP; 2 Jun 1998 04:13:43 -0000
Message-Id: <3.0.3.32.19980601211339.0070ec18@mail.plstn1.sfba.home.com>
X-Sender: ludwigp@mail.plstn1.sfba.home.com (Unverified)
X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.3 (32)
Date: Mon, 01 Jun 1998 21:13:39 -0700
To: isp@FreeBSD.ORG
From: Ludwig Pummer <ludwigp@bigfoot.com>
Subject: Kerberos or NIS/YP?
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-freebsd-isp@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

I'm looking to set up dialin modem access (so my friends have low-ping
access to my quake2 server :) but can't figure out which one is better for
shared passwords: Kerberos or NIS.
I've got two FreeBSD machines and a Livingston Portmaster 2e (got it free).
One FreeBSD machine ('inet', unimaginative, i know) has user accounts, mail
(smtp, imap, pop3), quake2, and almost everything else. The other
('fortress' and 'fortressa', i have aliases for DNS purposes) has only root
(well, plus my personal account) and DNS. I'm looking to make it my
'secure' server.
What I'd like to do is have inet be the shared password server, either
Kerberos or NIS, and the RADIUS server for the Portmaster.
Which would be better and/or simpler to implement? I'd like to for any
password-checking done now (mail, telnet/ftp, chpass) to continue to work
with a minimum of fuss.
I've found neither the manpages nor the handbook or FAQ have given enough
information for this decision. The manpage for NIS doesn't say, for
example, what happens to programs which use pwd.h's password-checking
functions. I don't have kerberos installed, so I can't check its manpages,
but I'd like to know how it works with programs which use pwd.h.

Thanks in advance,
--Ludwig Pummer
ludwigp@bigfoot.com ludwigp@chipweb.ml.org
ICQ UIN: 692441   http://chipweb.home.ml.org

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message