25 Apr
2001
25 Apr
'01
07:59
NIS/NIS+/LDAP are all about the same unless you are SSL enabling all your LDAP stuff in which case it can be a good deal safer. Of course that means you have to do some SSL rollout of certs properly or an attacker can spoof/man in the middle/etc. If you want some real security I'd reccomend Kerberos. It's very non-trivial however (but worth it for sufficiently large/paranoid organizations). Kurt Seifried, seifried@securityportal.com Securityportal - your focal point for security on the 'net