[gentoo-server] authentication in servers

[gentoo-server] authentication in servers

[Moises Silva]

Hi. I got a network of about 15 different hosts. Also, for each
service, different accounts are managed in each server. So keeping a
track of passwords is starting to be a problem. I would like to hear
some suggestions of more experimented users in this situation.

currently we use ssh, in some machines we use host keys without
passphrase. But every developer or mantainer has its own account. It
is reccomendable to use this approach?

The number of people with access to servers is about 7, only few
servers are supposed to be restricted to 2 or 3 people.

advices please?

best regards

-- 
"Su nombre es GNU/Linux, no solamente Linux, mas info en http://www.gnu.org"

-- 
gentoo-server@gentoo.org mailing list

Re: [gentoo-server] authentication in servers

[Christian L.]

Moises Silva wrote:

>Hi. I got a network of about 15 different hosts. Also, for each
>service, different accounts are managed in each server. So keeping a
>track of passwords is starting to be a problem. I would like to hear
>some suggestions of more experimented users in this situation.
>  
>

You may try LDAP authentication, theres also NIS as alternative, both  
manage password in a centralised way,but AFAIK NIS doesn't use any kind 
of encryption at the transport level, LDAP can be configured for using 
TLS/SSL.

I found this page which could be useful:

http://www.saas.nsw.edu.au/solutions/ldap-auth1.html


Cheers

Christian

Skaffa Yahoo! Mail! 6 MB gratis utrymme, antispamfunktion och antivirus.
 få den på: http://se.mail.yahoo.com
-- 
gentoo-server@gentoo.org mailing list

Re: [gentoo-server] authentication in servers

[Robert Larson]

On Monday 15 August 2005 05:38 pm, Moises Silva wrote:
> Hi. I got a network of about 15 different hosts. Also, for each
> service, different accounts are managed in each server. So keeping a
> track of passwords is starting to be a problem. I would like to hear
> some suggestions of more experimented users in this situation.

This seems like it may accomplish a lot of what you may be looking for:
http://www.opentechnet.com/auth-howto/index.html

On the downside, I'm not sure how you could incorporate ssh keys into it.  The 
setup though will allow you to integrate a large variety of applications into 
one centralized system, utilizing a veriety of mechanisms.  Also, this is 
probably not the optimal or most efficient layout, but it should allow for a 
quick expansion if there is a need.

HTH

Robert Larson
-- 
gentoo-server@gentoo.org mailing list

Re: [gentoo-server] authentication in servers

[Moises Silva]

thanks for your advices, i will do some research about the options you
showed me and will report back feedback.

warm regards.

On 8/16/05, Robert Larson <robert@sixthings.com> wrote:
> On Monday 15 August 2005 05:38 pm, Moises Silva wrote:
> > Hi. I got a network of about 15 different hosts. Also, for each
> > service, different accounts are managed in each server. So keeping a
> > track of passwords is starting to be a problem. I would like to hear
> > some suggestions of more experimented users in this situation.
> 
> This seems like it may accomplish a lot of what you may be looking for:
> http://www.opentechnet.com/auth-howto/index.html
> 
> On the downside, I'm not sure how you could incorporate ssh keys into it.  The
> setup though will allow you to integrate a large variety of applications into
> one centralized system, utilizing a veriety of mechanisms.  Also, this is
> probably not the optimal or most efficient layout, but it should allow for a
> quick expansion if there is a need.
> 
> HTH
> 
> Robert Larson
> --
> gentoo-server@gentoo.org mailing list
> 
> 


-- 
"Su nombre es GNU/Linux, no solamente Linux, mas info en http://www.gnu.org"

-- 
gentoo-server@gentoo.org mailing list