Date: Tue, 07 May 2002 12:23:57 -0500 From: "Douglas K. Rand" <rand@meridian-enviro.com> To: Mikel King <mikel@ocsinternet.com> Cc: freebsd-security@FreeBSD.ORG Subject: Re: Centralized authentication Message-ID: <87elgnj2he.wl@delta.meridian-enviro.com> In-Reply-To: <3CD8058D.4090706@ocsinternet.com> References: <874riov1et.wl@delta.meridian-enviro.com> <87d6x8smle.fsf@delta.meridian-enviro.com> <3CD8058D.4090706@ocsinternet.com>
next in thread | previous in thread | raw e-mail | index | archive | help
What I've started on is a NIS deployment. It was pointed out to me that all of the pam_* stuff still won't distribute the non-authentication stuff for /etc/passwd (uids, gids, home directories, shells, etc) and it won't do /etc/group stuff either. I'm right now trying to decide to distribute the encrypted passwords with NIS or to use some other pam_* thing, perhaps pam_radius. Our network is well protected by firewalls, so I'm feeling fairly comfortable with NIS for everything except the encrypted password. Actually, with the MD5 encrypted passwords, I also feel somewhat comfortable with NIS shipping those, but I'm still thinking about that. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?87elgnj2he.wl>