Re: nsswitch.conf uses incorrect methods for passwd, group and shadow
/etc/nsswitch.conf :
discussion about passwd, group and shadow entries.
normal system : "files", as only the files in /etc are read.
most nis systems : "compat", /etc/<file> will be read , and if it
contains lines starting with "+" or "-", then the relevant data will be
imported fron nis.
comment:
you can also use a play "nis". then you can delete the /etc/ files, and
only use the data from nis. but this will cause problems, if your
ypbind daemon isn't running. and i single user mode, everyone can
log into your system (sulogin checks against /etc/passwd (wrt
/etc/shadow).
also, this isn't recommended, if you mix several distributions or OS,
as the system account (uid 1-20) might be very different from system to
system).
summary: please use "files".
the nis package might have a nisconfig script to change this either to
"compat" or "files nis", but everything else may only be done by the
sysadmin.
difference between "compat" and "files nis" :
files nis always looks first at the file, then at nis.
but with compat, "nis" is only used if the file contains a line starting
with "+". also compart allows to include only some informations from nis
(e.g. "+@netgroup"), where "files nis" will always include everything.
andreas
--
E-mail the word "unsubscribe" to debian-devel-request@lists.debian.org
TO UNSUBSCRIBE FROM THIS MAILING LIST. Trouble? E-mail to listmaster@lists.debian.org
Reply to: