From owner-freebsd-isp Tue Jan 12 16:34:57 1999 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA14156 for freebsd-isp-outgoing; Tue, 12 Jan 1999 16:34:57 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from codine.icr.com.au (codine.icr.com.au [203.17.49.107]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA14122 for ; Tue, 12 Jan 1999 16:34:36 -0800 (PST) (envelope-from dale@icr.com.au) Received: from sparc.icr.com.au (sparc.icr.com.au [203.17.49.112]) by codine.icr.com.au (8.9.1/8.9.1) with ESMTP id KAA00560; Wed, 13 Jan 1999 10:26:22 +1000 (EST) (envelope-from dale@icr.com.au) Received: from sun1 (roadrunner.secure.icr.com.au [203.37.247.6]) by sparc.icr.com.au (8.8.8+3.0Wbeta13/8.8.8) with SMTP id KAA20916; Wed, 13 Jan 1999 10:27:22 +1000 (EST) (envelope-from dale@icr.com.au) Message-ID: <010101be3e8b$41ed4e80$06f725cb@sun1.icr.com.au> Reply-To: "Dale Walker" From: "Dale Walker" To: , "Robert Hough" Subject: Re: Suggestions Date: Wed, 13 Jan 1999 10:25:40 +1000 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.3110.1 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org -----Original Message----- From: Robert Hough To: freebsd-isp@FreeBSD.ORG Date: Wednesday, 13 January 1999 10:20 Subject: Suggestions >Hi there, I work with a small but quickly growing ISP, and I realized that >eventually, we are going to need to build seperate servers to various jobs. >The problem I forsee is users though. If we build a new mail server, I >would basically have to add all of our users to that box too, correct? Is >there a way to have like a central password server, where no matter what >box a user logs into, they will be able to access it, provided we allow >them to do so? Is NIS the only way to do this, or are there other ways as >well? If someone could point me to some url's on this topic, I would >appreciate it. I dont see this as becoming a problem any time soon, but it >is something I'd like to start getting ready for. Thanks. We have a similar thing, we currently run 12 FBSD boxes, and the usernames/passwords are shared via NIS.. You can get really smart and share the user filesystem and NIS data by a second "back" network using a private address range (eg 192.168.1.x). this way the NIS data is even more secure. remember you don't need to have the usernames and passowrds on all servers, nntp and web proxy machines don't require it, so only have an admin based user... Cheers, Dale -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Dale Walker dale@icr.com.au Manager/Sysadmin - ICRnet Independent Computer Retailers (ICR) http://www.icr.com.au Ph: +61 7 4636 4625 Fax: +61 7 4636 3513 helpdesk@icr.com.au -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- "Ubi non accusator, ibi non judex." (Where there is no police, there is no speed limit.) -- Roman Law, trans. Petr Beckmann (1971) -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message