Re: Alternatives to NIS?
John Goerzen wrote:
>
> At my location, we are dealing with a large Unix network composed of
> machines from multiple vendors -- Debian, RedHat, Sun, DEC, etc. We are
> moving largely in the direction of Debian and some of the legacy systems
> will be dropped within a few years anyway (due to Y2K nonconformity).
>
> We have approximately 2500 users that can pick any of a few dozen machines
> to log in to. Currently, we use NIS to propogate passwd information
> (login, password, UID, etc.) I am aware that NIS is widely considered to
> be insecure. I am wondering what alternatives Debian might support that
> would provide a more secure solution than NIS.
I recommend you investigate Kerberos - (I am non-US so I use
http://www.pdc.kth.se/kth-krb/ as a starting URL) Note that Kerberos does
not seem to be available as a Debian package yet. Many Unix distributions
(US versions) include Kerberos and it is written into the security related
internet standards such as GSSAPI.
John Lines
--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-user-request@lists.debian.org .
Trouble? e-mail to templin@bucknell.edu .
Reply to: