Re: multihost master.passwd sync

From: Andy Harrison (ah60_at_httpsite.com)
Date: 05/27/03

Next message: Michael Collette: "Re: multihost master.passwd sync"

Previous message: Andy Harrison: "multihost master.passwd sync"
Maybe in reply to: Andy Harrison: "multihost master.passwd sync"
Next in thread: Michael Collette: "Re: multihost master.passwd sync"
Reply: Michael Collette: "Re: multihost master.passwd sync"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 27 May 2003 14:30:41 -0400 (EDT)
To: freebsd-security@freebsd.org

-----BEGIN PGP SIGNED MESSAGE-----

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
On 27-May-2003, Amit K. Rao wrote message "Re: multihost master.passwd sync"
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> NIS [yp(8)] ?

Lord no... even if you setup a backup nis server, an ailing master server can
really screw up your day.

I think I thought of a solution though. root cronjob to pgp encrypt the file,
change perms so that it can be accessed by a user that is allowed to copy the
file to the target host. The file is in encrypted using the public key of
root the target machine, so only root on the target will be able to pgp extract
the file.

~~
Andy Harrison
ah##@httpsite.com
ICQ: 123472 AIM/Y!: AHinMaine
[full headers for details]

-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5.8

iQCVAwUBPtOuz1PEkLgodAWVAQEupQQAhNGfV9yIg7jqM9D3VuPAfHy6XgcC0QnD
hPx5J0+uZZy9mpfBGSjn930To+YUFBZp+h/JcfX80rBFdTs+gSXk/olug7EWkhNp
6Uk+HazQeSN7347Rn5Ln0Pcagiv/Ua3zwQuXISJKxmUnHecufkMrOyc9wMtPbDwL
xmFl3gzrq38=
=HAT1
-----END PGP SIGNATURE-----
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"

Next message: Michael Collette: "Re: multihost master.passwd sync"

Previous message: Andy Harrison: "multihost master.passwd sync"
Maybe in reply to: Andy Harrison: "multihost master.passwd sync"
Next in thread: Michael Collette: "Re: multihost master.passwd sync"
Reply: Michael Collette: "Re: multihost master.passwd sync"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: multihost master.passwd sync
... even if you setup a backup nis server, ... > copy the file to the target host. ... > public key of root the target machine, so only root on the target will be ... > able to pgp extract the file. ...
(FreeBSD-Security)
Re: multihost master.passwd sync
... even if you setup a backup nis server, ... >>copy the file to the target host. ... >>able to pgp extract the file. ... I'm real curious about utilizing an LDAP backend to replace NIS. ...
(FreeBSD-Security)