On Fri, Feb 04, Jan Engelhardt wrote:
On Friday 2022-02-04 13:21, Stefan Seyfried wrote:
I disagree. NIS still works, and does what it is supposed to.
LDAP for this usecase was a major PITA last I looked (ok, 15 years back), even the userid lookup was orders of magnitude slower (and this was in a
Isn't that because NIS copies the user database to where it is used? LDAP doesn't, by default. You have to explicitly make a replica if indeed you want such.
No, NIS does not copy the user database. Ok, 25 years ago there were some commercial UNIX, where the "NIS implementation" was to copy the passwd database to the client via cron job. But luckily none of this systems did survive for long ;) NIS also makes a query from the client side on the server for every single lookup. Plain NIS is much slower than LDAP. But 25 years ago I added some special support in glibc and RPC for Linux-NIS and I wrote nscd for this reason :)
Alternatively, there is sssd, and sssd has caching, so it's only slow on the very first load.
Correct, sssd is the way to go today if you use LDAP. Thorsten -- Thorsten Kukuk, Distinguished Engineer, Senior Architect SUSE Software Solutions Germany GmbH, Maxfeldstr. 5, 90409 Nuernberg, Germany Managing Director: Ivo Totev (HRB 36809, AG Nürnberg)