From owner-freebsd-isp Tue Oct 6 09:03:45 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA14027 for freebsd-isp-outgoing; Tue, 6 Oct 1998 09:03:45 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from java.dpcsys.com (java.dpcsys.com [206.16.184.7]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA14003 for ; Tue, 6 Oct 1998 09:03:32 -0700 (PDT) (envelope-from dan@dpcsys.com) Received: from localhost (dan@localhost) by java.dpcsys.com (8.9.1a/8.9.1) with SMTP id JAA24002; Tue, 6 Oct 1998 09:03:24 -0700 (PDT) Date: Tue, 6 Oct 1998 09:03:24 -0700 (PDT) From: Dan Busarow To: Chris Shenton cc: freebsd-isp@FreeBSD.ORG Subject: Re: How to share accounts between mail/pop and web servers? In-Reply-To: <87hfxiv0r9.fsf@absinthe.shenton.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 5 Oct 1998, Chris Shenton wrote: > I'm not keen on NIS, due to security concerns. In other situations, > I've used "rsync" over "ssh" with host key authentication and it's > worked well. I've never used it for /etc/passwd and I'm concerned > about stuff like failed updates or partial updates leaving the send-to > box with a corrupt /etc/passwd, preventing everyone (including root) > access. > > What have you used that works well for you? Try this in a script running on the receiving end. Copy master.passwd to someplace other than /etc, say /root/pwd, and then test before installing. if [ -f master.passwd ] then if /usr/sbin/pwd_mkdb -c master.passwd then chmod 600 master.passwd mv master.passwd /etc /usr/sbin/pwd_mkdb -p /etc/master.passwd fi fi Dan -- Dan Busarow 949 443 4172 Dana Point Communications, a California corporation dan@dpcsys.com Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message