[TriLUG] Small Network User Management

Chris Hedemark chrish at trilug.org
Wed Apr 23 15:02:19 EDT 2003


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


On Wednesday, April 23, 2003, at 02:15 PM, Joseph Tate wrote:


> A lot of people don't trust LDAP for authentication and use Kerberos 
> instead.

Well keep in mind we're talking about two different functions now.  
There is directory services, and authentication.  LDAP can do both.  
Kerberos can *only* do authentication.  You can use the directory 
services aspect of LDAP and authenticate against Kerberos if you want.

For Tarus' purposes, LDAP by itself is probably sufficient.

(TriLUG, BTW, uses the hybrid LDAP/Kerberos configuration for the 
server farm)

> I've never personally set up NIS,

Don't.

>  but apparently, it's very easy on a homogeneous network.

Easy?  Easy to hack, you mean.

>  A nightmare on a mixed network.

Any network.

ypcat -k passwd.byname

- --

(See mail headers for more info)
"They that can give up essential liberty to obtain a little temporary 
safety deserve neither liberty nor safety." - Benjamin Franklin
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (Darwin)

iEYEARECAAYFAj6m4z8ACgkQYPuF4Zq9lvbfbACeKAnVsYVLwp/orUAH8ngn4Wrc
k0kAoN/UkiLUpOnk49Y3VW86Cv6aV7g2
=c7Go
-----END PGP SIGNATURE-----




More information about the TriLUG mailing list