[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: 15.000 users (fwd)



> excuse me for not buying your claim, but can you tell me eactly how is NIS
> made secure on a non-closed network (i.e. one with users)? i'd be
> interested to know. further, are you refering to NIS or to NIS+ or to
> something else?
> 
I'm refering to NIS. What do you mean, when you say it not secure ?
That somebody can abtain root access with it ? That's not true 
That anybody can get encrpted password file ? That's also no more 
true,since  you can make encrpted passwords unvisible 
with some on-top-NIS schemes .
> this being on the server side. how exactly is data kept and accessed on
> the clients? this i can not really know unless i actualy read some manuals
> that answer that, or read the sources.
Ok. That's true. But if it stored on server side as database file
I can guess, that it will be also same mechanism on client side.
But, you are right - it need checking .

P.S. Try to explain  what do you mean, when you say "secure" and 
we'll say if NIS is good enought ...



Follow-Ups: