From owner-freebsd-isp Fri Aug 11 10: 4:58 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.prophetnetworks.net (mail.pns.net [63.71.252.9]) by hub.freebsd.org (Postfix) with ESMTP id 07D5237B55C for ; Fri, 11 Aug 2000 10:04:50 -0700 (PDT) (envelope-from freebsd@jnternet.net) Received: from shell01.pns.net (nmj3e@shell01.prophetnetworks.net [63.71.252.10]) by mail.prophetnetworks.net (8.9.3/8.9.1) with ESMTP id MAA99659; Fri, 11 Aug 2000 12:03:52 -0500 (EST) (envelope-from freebsd@jnternet.net) Date: Fri, 11 Aug 2000 12:03:52 -0500 (EST) From: Nate Johnston X-Sender: nmj3e@shell01.pns.net To: Evren Yurtesen Cc: freebsd-isp@freebsd.org Subject: Re: root password in NIS maps In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 11 Aug 2000, Evren Yurtesen wrote: > I would like to have root password in NIS maps but there is only one > problem. When I login to a client machine everything works fine. I can > even use 'su' but when I use a command like 'ls -la' I see 0 for the UID > field of the output. > > Does anybody have root password in their NIS maps and it works fine? if > yes then how??? Having the password for user 'root' in your NIS maps is really a bad idea. What happens if the machine fails, and for some reason it can't connect to the NIS server? What happens when you want to use the server in single-user mode? probably the best thing to do is this: leave 'root' as a local UID 0 user as usual. On your NIS server, create a new user that also has UID 0, but with a centrally controlled password. Then, the local root will assert itself in all the usual ways (UID mapping, single-user-mode passwords), but you will be able to control root logins. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message