From owner-freebsd-questions Sat Feb 15 6: 8: 3 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 33BE237B401 for ; Sat, 15 Feb 2003 06:08:01 -0800 (PST) Received: from pa-plum1b-166.pit.adelphia.net (pa-plum1b-13.pit.adelphia.net [24.53.161.13]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4D05943F75 for ; Sat, 15 Feb 2003 06:08:00 -0800 (PST) (envelope-from wmoran@potentialtech.com) Received: from potentialtech.com (working [172.16.0.95]) by pa-plum1b-166.pit.adelphia.net (8.12.3/8.12.3) with ESMTP id h1FE7vrX003845; Sat, 15 Feb 2003 09:07:58 -0500 (EST) (envelope-from wmoran@potentialtech.com) Message-ID: <3E4E49BD.9080106@potentialtech.com> Date: Sat, 15 Feb 2003 09:07:57 -0500 From: Bill Moran User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.1) Gecko/20021127 X-Accept-Language: en-us, en MIME-Version: 1.0 To: BSD Freak Cc: FreeBSD Questions Subject: Re: A modern BSD UNIX workgroup - how would you do it? References: <27c344427c532e.27c532e27c3444@mbox.com.au> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG BSD Freak wrote: > I have an upcoming project to create a modern UNIX (mainly > FreeBSD-based) workgroup computing environment. > > If _YOU_ had your chance to do it from scratch, what technologies would > you use? Basically only following are set in stone. Everything else is > up to me: > > 1. Centralised user/password/account management > 2. 2-3 file servers running FreeBSD, 1 mail server and 1 VPN gateway > also running FreeBSD > 3. Workstations will be 75% FreeBSD and 25% Mac OS X 10.2 > > Most people I have spoken to automatically say NIS/NFS. Although I know > that NIS/NFS is a tried and true combination, I can't help but feel > there must be a better way to do a modern BSD UNIX environment. As silly > as it may sound I am seriously thinking about running Samba for file > sharing services even though this is a fully UNIX environment. > Reasons for this include excellent performance on FreeBSD and better > security than NFS. > > Some of the other authentication/account management technologies I'm > evaluating include LDAP and Kerberos. Any and comments/suggestions would > be very well received... > > Basically what I'm asking is if you could do it all over from scratch > how would you do a modern BSD UNIX workgroup? If (and it's a fairly large "if") nss_ldap was supported by FreeBSD, and if ldap authentication were supported by MacOS X, then I would go with LDAP. But 4.X doesn't support nss_ldap, and I'm not even sure if 5.x does yet. I have no clue whether MacOS X does or not. Unless I had a concern about someone sniffing my local network, I'd use NFS for file sharing. I think it's still the cleanest, even if it's not the fastest. In the more practical sense. It's probably still best to go with NIS, as it seems to be the most supported at this time. I still like NFS for file-sharing, although SMB is a viable option. YMMV -- Bill Moran Potential Technologies http://www.potentialtech.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message