From owner-freebsd-isp@FreeBSD.ORG Sat Oct 15 01:16:44 2005 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 339C716A41F for ; Sat, 15 Oct 2005 01:16:44 +0000 (GMT) (envelope-from lists@natserv.com) Received: from zoraida.natserv.net (p65-147.acedsl.com [66.114.65.147]) by mx1.FreeBSD.org (Postfix) with ESMTP id E4FC843D45 for ; Sat, 15 Oct 2005 01:16:43 +0000 (GMT) (envelope-from lists@natserv.com) Received: from localhost (localhost.natserv.net [127.0.0.1]) by zoraida.natserv.net (Postfix) with ESMTP id 02C157DB4 for ; Fri, 14 Oct 2005 21:16:43 -0400 (EDT) Date: Fri, 14 Oct 2005 21:16:43 -0400 (EDT) From: Francisco Reyes X-X-Sender: fran@zoraida.natserv.net To: FreeBSD ISP list Message-ID: <20051012234337.K63956@zoraida.natserv.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Subject: Distributed authentication. Which one? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Oct 2005 01:16:44 -0000 I inherited a number of machines and now have to deal with maintaining a small set of users accros 20 machines. Although the list of users is very small, will alsolike to use the same authentication scheme for handling authentication against virtual mail accounts. The setup: mail provider with SMTP authentication. Currently using MySQL accross different machines, but not shared. Would like to have a single way to authenticate all email users accross all machines. Preferably a distributed system which can run on top of PostgreSQL. I have read of the following: NIS, LDAP and Kerberos. Security is obviously a concern.