From owner-freebsd-questions Sat Feb 15 8:59:17 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4E90F37B401 for ; Sat, 15 Feb 2003 08:59:15 -0800 (PST) Received: from kyblik.pieskovisko.sk (kyblik.pieskovisko.sk [213.215.72.42]) by mx1.FreeBSD.org (Postfix) with SMTP id 3B84643FB1 for ; Sat, 15 Feb 2003 08:59:14 -0800 (PST) (envelope-from frankie@kyblik.pieskovisko.sk) Received: (qmail 77085 invoked by uid 19508); 15 Feb 2003 16:59:12 -0000 Date: Sat, 15 Feb 2003 17:59:12 +0100 From: "Michal F. Hanula" To: freebsd-questions@freebsd.org Subject: Re: A modern BSD UNIX workgroup - how would you do it? Message-ID: <20030215165912.GA65482@kyblik.pieskovisko.sk> References: <27c344427c532e.27c532e27c3444@mbox.com.au> <3E4E49BD.9080106@potentialtech.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii; x-action=pgp-signed Content-Disposition: inline In-Reply-To: <3E4E49BD.9080106@potentialtech.com> User-Agent: Mutt/1.5.1i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Sat, Feb 15, 2003 at 09:07:57AM -0500, Bill Moran wrote: > BSD Freak wrote: > >I have an upcoming project to create a modern UNIX (mainly > >FreeBSD-based) workgroup computing environment. > > > >If _YOU_ had your chance to do it from scratch, what technologies would > >you use? Basically only following are set in stone. Everything else is > >up to me: > > > >1. Centralised user/password/account management > >2. 2-3 file servers running FreeBSD, 1 mail server and 1 VPN gateway > >also running FreeBSD > >3. Workstations will be 75% FreeBSD and 25% Mac OS X 10.2 > > > >Most people I have spoken to automatically say NIS/NFS. Although I know > >that NIS/NFS is a tried and true combination, I can't help but feel > >there must be a better way to do a modern BSD UNIX environment. As silly > >as it may sound I am seriously thinking about running Samba for file > >sharing services even though this is a fully UNIX environment. > >Reasons for this include excellent performance on FreeBSD and better > >security than NFS. > > > >Some of the other authentication/account management technologies I'm > >evaluating include LDAP and Kerberos. Any and comments/suggestions would > >be very well received... > > > >Basically what I'm asking is if you could do it all over from scratch > >how would you do a modern BSD UNIX workgroup? > > If (and it's a fairly large "if") nss_ldap was supported by FreeBSD, and > if ldap authentication were supported by MacOS X, then I would go with > LDAP. > But 4.X doesn't support nss_ldap, and I'm not even sure if 5.x does yet. > I have no clue whether MacOS X does or not. > Unless I had a concern about someone sniffing my local network, I'd use > NFS for file sharing. I think it's still the cleanest, even if it's not > the fastest. And if you are concerned about somebody sniffing, why not use IPSEC? m&f - -- What do you care what other people think? -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+TnHfQgEMP0l2aH4RArn8AJ9eOhyCgVFI7N7Mv2q4f0nkp0roaACgv0eH 7ON11WjgMP8rYseCJD1UoGo= =OkNk -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message