hi! I want to use a service like nis in my linux-network but I think this is not really secure... (or is it?) Is there a way to use nis+ or something like this with x86-linux-server and linux-clients (I heard there is only a sever-version for sun...) ? bye.
Maybe you should use ldap. openldap comes with the suse CDs. nis has a bit of insecurity. On Tue, 24 Apr 2001, da_bug wrote:
hi!
I want to use a service like nis in my linux-network but I think this is not really secure... (or is it?) Is there a way to use nis+ or something like this with x86-linux-server and linux-clients (I heard there is only a sever-version for sun...) ?
bye.
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
NIS/NIS+/LDAP are all about the same unless you are SSL enabling all your LDAP stuff in which case it can be a good deal safer. Of course that means you have to do some SSL rollout of certs properly or an attacker can spoof/man in the middle/etc. If you want some real security I'd reccomend Kerberos. It's very non-trivial however (but worth it for sufficiently large/paranoid organizations). Kurt Seifried, seifried@securityportal.com Securityportal - your focal point for security on the 'net
Probelm I have heard with kerberos so far is the lack of documentation. COuld you point me to some? I would really love to implement it. On Wed, 25 Apr 2001, Kurt Seifried wrote:
NIS/NIS+/LDAP are all about the same unless you are SSL enabling all your LDAP stuff in which case it can be a good deal safer. Of course that means you have to do some SSL rollout of certs properly or an attacker can spoof/man in the middle/etc. If you want some real security I'd reccomend Kerberos. It's very non-trivial however (but worth it for sufficiently large/paranoid organizations).
Kurt Seifried, seifried@securityportal.com Securityportal - your focal point for security on the 'net
da_bug wrote:
hi!
I want to use a service like nis in my linux-network but I think this is not really secure... (or is it?) Is there a way to use nis+ or something like this with x86-linux-server and linux-clients (I heard there is only a sever-version for sun...) ?
yes, nis+ as server is for solaris only. If you have a working sun nis+ server, it's easy to have linux nis+ clients, see 1. Alexander Mattausch: (odi) Gelbe Seiten Die Network Information Services NIS Praxis, Network Information Services, NIS, YP, yellow pages, Linux, Unix c't 8/01, Seite 248 cu webi -- ********** ************ Bruno Weber bweber@rsl.geo.unizh.ch University Zurich-Irchel tel.: ++41 1 635 65 16 Departement of Geography fax.: ++41 1 635 68 48 Winterthurerstr. 190 CH-8057 Zurich ~~ _=o ~~~ _`\<,_ ````(_)/ (_)
participants (4)
-
Bruno Weber -
da_bug -
Kurt Seifried -
semat