public inbox for gentoo-user@lists.gentoo.org
 help / color / mirror / Atom feed
* [gentoo-user] NIS configuration
@ 2006-08-22 15:00 Leandro Melo de Sales
  2006-08-27  8:41 ` Bryan Whitehead
  0 siblings, 1 reply; 2+ messages in thread
From: Leandro Melo de Sales @ 2006-08-22 15:00 UTC (permalink / raw
  To: gentoo-user

Hi!

  I configured my gentoo server box to authenticate users through LDAP
(nsswicth+pam_ldap). Everything are working fine and now I want to run
a ypserv and as a result I want the nis clients authenticating against
my server. I following the instructions in
http://gentoo-wiki.com/HOWTO_Setup_NIS but the clients (gentoo and
ubuntu boxes) don't find the ypserver, any clue?
  I was planning to make the clients authentication directly to LDAP
server, but in this case I have to install pam_ldap and create a
/etc/ldap.conf and put ldap bindpw into this file or in
/etc/ldap.secret. Even if I protect it with 600 the use can get this
file installing a windows application (the client machines have dual
boot) that read ext3 partitions and read the files, finally getting
the bindpw. Any comment about this? Am I thinking wrong about that?

Thank you. BTW, all suggestion will be greatfully accepted.

Leandro.

-- 
Leandro Melo de Sales.
Computer Science MSc Candidate
Distributed System Lab - lsd.ufcg.edu.br
Pervasive Computing Lab - embedded.ufcg.edu.br
Universidade Federal de Campina Grande - UFCG
-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 2+ messages in thread

* Re: [gentoo-user] NIS configuration
  2006-08-22 15:00 [gentoo-user] NIS configuration Leandro Melo de Sales
@ 2006-08-27  8:41 ` Bryan Whitehead
  0 siblings, 0 replies; 2+ messages in thread
From: Bryan Whitehead @ 2006-08-27  8:41 UTC (permalink / raw
  To: gentoo-user

If you are worried about the users getting the ldap bind password - then 
why on earth would you bother with NIS? NIS has no password to block 
binding at all! At least ldap has a binding password...

On Tue, 22 Aug 2006, Leandro Melo de Sales wrote:

> Hi!
>
> I configured my gentoo server box to authenticate users through LDAP
> (nsswicth+pam_ldap). Everything are working fine and now I want to run
> a ypserv and as a result I want the nis clients authenticating against
> my server. I following the instructions in
> http://gentoo-wiki.com/HOWTO_Setup_NIS but the clients (gentoo and
> ubuntu boxes) don't find the ypserver, any clue?
> I was planning to make the clients authentication directly to LDAP
> server, but in this case I have to install pam_ldap and create a
> /etc/ldap.conf and put ldap bindpw into this file or in
> /etc/ldap.secret. Even if I protect it with 600 the use can get this
> file installing a windows application (the client machines have dual
> boot) that read ext3 partitions and read the files, finally getting
> the bindpw. Any comment about this? Am I thinking wrong about that?
>
> Thank you. BTW, all suggestion will be greatfully accepted.
>
> Leandro.
>
>

-- 
Bryan Whitehead
Email:driver@megahappy.net
-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2006-08-27  8:45 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-08-22 15:00 [gentoo-user] NIS configuration Leandro Melo de Sales
2006-08-27  8:41 ` Bryan Whitehead

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox