[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

shadow over NIS



Seems completely broken!!!!

Everything looks just fine, but every user can ypcat shadow.byname.
i.e. - no shadow, no batich...

Anyone knows how to remedy this terrible situation?! I would hate to give
up  the convenience of NIS, but wouldn't tolerate this insecurity.
Alternatively - what are your thoughts regarding a way to go around the
problem? (I'm thinking about something like using NIS for passwd, but
transferring shadow over ssh every time yppush is done, and specifying
shadow: files in nsswitch.conf).

Any ideas will be most welcome.

[I'm using Debian 2.0, nis-3.2.1-3 on all hosts in the network.]


Tuvik

--------------------------------------------
               Tuvik Beker
      P.O. Box 571, Givatayim 53104
Tel. (972) 3 5714436    Fax. (972) 3 5334349
          tuvik@picard.tau.ac.il
--------------------------------------------