Date: Sun, 7 Apr 2002 19:20:04 +0200 From: Pieter Danhieux <pdanhieux@easynet.be> To: freebsd-security@freebsd.org Subject: Re: Centralized authentication Message-ID: <20020407192004.5cbecd18.pdanhieux@easynet.be> In-Reply-To: <20020406170014.5f47c85f.cyschow@shaw.ca> References: <874riov1et.wl@delta.meridian-enviro.com> <20020406170014.5f47c85f.cyschow@shaw.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 6 Apr 2002 17:00:14 -0700 Samuel Chow <cyschow@shaw.ca> wrote: > On Sat, 06 Apr 2002 17:43:22 -0600 > "Douglas K. Rand" <rand@meridian-enviro.com> wrote: > > > We have a few dozen FreeBSD workstaions and servers and as their > > numbers increase managing users and groups via indvidual /etc/passwd > > and /etc/group files is getting more and more tiresome. We also have > > just a few Linux boxes. > > How about NIS? I use it at home with a total > of two machines and one users. > > --- > Samuel Chow > cyschow@shaw.ca > > Segmentation Fault (core dumped) > This message is displayed using recycled electrons. > NIS is a security issue, cause it sends the passwords file trough the network, and any user can sniff it or get it by 'ypcat passwd'. So i would suggest a combination of NIS and RADIUS. NIS takes care of the home directories and users, and RADIUS would authenticate the users. We use it at the University of Gent in our little basement for 6 pc's and 50 users ... regards, Pieter Danhieux To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020407192004.5cbecd18.pdanhieux>