From owner-freebsd-isp Sun Oct 3 20:19:20 1999 Delivered-To: freebsd-isp@freebsd.org Received: from cliff.i-plus.net (cliff.i-plus.net [209.100.20.42]) by hub.freebsd.org (Postfix) with ESMTP id 578AA14F65 for ; Sun, 3 Oct 1999 20:19:16 -0700 (PDT) (envelope-from st@i-plus.net) Received: from abyss ([209.100.25.1]) by cliff.i-plus.net (8.9.3/8.9.3) with SMTP id XAA79248; Sun, 3 Oct 1999 23:18:19 -0400 (EDT) From: "Troy Settle" To: "Rashid N. Achilov" , Subject: RE: One password base for some *NIX boxes Date: Sun, 3 Oct 1999 23:18:03 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org The easiest answer, is NIS. But, NIS isn't exactly secure. I'd reccomend that you select one box to be your master server, then use ssh and some perl to generate and distribute appropriate passwd and shadow files to the other servers. IMO, FreeBSD would be the best choice for a master passwd server, as it keeps all it's information in one file (/etc/master.passwd). IIRC, solaris keeps different information in passwd and shadow. I don't know about linux. When implementing this, you'll need to educate your users so they'll know to change their passwords on the master server only (you can simplify this by setting up a passwd util on a web page). Also note that you'll need to install the DES encryption libraries for FreeBSD in order to achive the inter-operability you desire. HTH, Troy > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Rashid N. Achilov > Sent: Sunday, October 03, 1999 10:47 PM > To: freebsd-isp@FreeBSD.ORG > Subject: One password base for some *NIX boxes > > > Does anybody know any decision of this problem: I have some set of *NIX > boxes (Linux, FreeBSD, Solaric SPARC) and will, that it all use one > users/passwords database. > > Any advices received. > > With Best Regards. > Rashid N. Achilov (RNA1-RIPE), Cert. ID: 28514, Granch Ltd. > lead engineer > e-mail: achilov@granch.ru, tel (383-2) 24-2363 > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message