Christoph Schaefer <christoph.schaefer@student.uni-tuebingen.de> wrote:

I want to have shadowed passwords on my yp-net because I do not want that every user can see the encrypted passwords. I have only one master ypserver, no slaves but about 20 clients. That's why it would be great if I have to change only some config options on the master.

As others already pointed out you can't have a "protected" NIS map for shadow passwords.

Is there any cheap-dirty-little trick?

Yes, there is a *dirty* trick. Don't distribute the encrypted passwords via NIS. Set the password field in the NIS map passwd to "x" and keep a shadow file locally on every host. Then the shadow file must be updated by other means, e.g. secure copy, which can be done automatically by a cron job. Although I don't know the exact procedures used here, something like this is done in our faculty's network (NIS servers: Solaris; clients: Solaris, Linux, Irix). I don't know much about NIS configuration, but this should be possible with a Linux server, too. Ok, it's not really the solution you asked for... Eilert -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Eilert Brinkmann -- Universitaet Bremen -- FB 3, Informatik eilert@informatik.uni-bremen.de - eilert@tzi.org - eilert@linuxfreak.com http://www.informatik.uni-bremen.de/~eilert/