James Knott wrote:
Aaron Kulkis wrote:
James Knott wrote:
primm wrote:
What NFS allows is the user id number, not name. This means is if user A is 1000 on one system. Another user 1000 on another system will have access to A's files. The key is make sure user ID's are consistent across all systems. Someone with root access could of course create a new user with whatever ID they want or use an existing ID.
I setup the nfs server with yast. I setup the nfs clients with Yast. Yast tells me nothing about id. It doen't say, 'are you sure you want to continue becaus this is s big security risk'.
I come back to my original worry: I'm the only one with root access on any box on my network. Yast set it up for me. What are my problems? I'm sorry to have to ask for confirmation. Just make sure that each user on your network has a UNIQUE user ID number ... if Joe has user ID 1002 on one machine, and Jane has user ID 1002 on another machine, then you will have problems.
You want Joe to have the same user ID (say 1002) on every machine, and Jane to have her own user ID (say 1003) on every machine.
The easiest way to do this is with NIS. With the Windows Domain Login, one option is to create a home
Aaron Kulkis wrote: directory. Is this possible with NIS? Yes. It's been a standard part of NIS since the late 1980's The home directories are either automounted, or you just keep mount /home to all of the clients via NFS.
Automounting individual home directories is slightly more secure, but also a pain in the neck if one person has to visit other user's directories on a regular basis... then they have to wait for automount to negotiate the mount every time they go to a new user's home directory.
For a small business, NFS-mounting all of /home is feasible. For a large organization, like General Motors Engineering Division, it's not practical, and each user's home directory must be individually auto-mounted.
[This has nothing to do with user ID's, and everything to do with disk-space management -- in the GM scenario, users' home directories are spread over a few dozen servers.
If not what does one use for a home directory, when logged onto a computer without a home directory for that user?
I'm well aware of mounting a common /home via NFS, but was curious about what would happen with NIS, if someone logged in, without a /home directory.
Same thing that happens without NIS -- if there's no valid home directory for the login process to cd into, then the user's shell gets dumped into /. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org