Re: multihost master.passwd sync

From: Eric Anderson (anderson_at_centtech.com)
Date: 05/27/03

  • Next message: Michael Collette: "Re: multihost master.passwd sync" 
    Date: Tue, 27 May 2003 14:20:59 -0500
To: Andy Harrison <ah60@httpsite.com>

    Andy Harrison wrote:
    >>Why not just preconfigure SSH keys between the boxes and scp the file across?
    >>Seems like a lot of extra work to bring PGP into the mix.
    >
    >
    > Because we don't allow root login remotely, mandated from above.

    so you scp the file to a directory owned by a user designated to only do
    this function.. then have a cron job that fires up every so often that
    snags that file and updates the running master.passwd file..

    >>Personally, I'm real curious about utilizing an LDAP backend to replace NIS.
    >>Read a bit about it, but haven't had a chance to play with it just yet. It
    >>sounds like a far more elegant solution for what you're looking to do as
    >>well. Assuming it all works as advertised that is.
    >
    >
    > The problem is that while it allows authentication, it doesn't integrate
    > seamlessly allowing you to own files as a user that only exists in the ldap.

    Huh? Explain more please..

    Eric 

    -- 
------------------------------------------------------------------
Eric Anderson	   Systems Administrator      Centaur Technology
Attitudes are contagious, is yours worth catching?
------------------------------------------------------------------
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
  • Next message: Michael Collette: "Re: multihost master.passwd sync"

    Relevant Pages

    • Re: Internet file transfers: SCP, SFTP, or PGP ?
      ... >> If you use PGP, don't use passwords, use public keys. ... It's not so clear how far SCP gets you ...
      (comp.security.ssh)
    • Re: multihost master.passwd sync
      ... > Why not just preconfigure SSH keys between the boxes and scp the file across? ... > Seems like a lot of extra work to bring PGP into the mix. ...
      (FreeBSD-Security)
    • Re: Internet file transfers: SCP, SFTP, or PGP ?
      ... >> 3- PGP over FTP can leave a PGP password exposed on your FTP server ... > Your last sentence seems to imply that being "FTP server ready" means ... Is it overkill to use PGP and then transfer with SCP, ...
      (comp.security.ssh)
    • Bluetooth network
      ... I have been able to set up a bluetooth network using two debian ... boxes so that now I can ping the boxes each other through a bnep ... to the Network Access Point (NAP) using scp: ...
      (comp.os.linux.networking)
    • Re: Quality Assuring remote devices, which is best (perl, expect, or bash)
      ... I know this seems weird but there are a few boxes out there that do ssh ... and not scp. ... point, and may have mislead. ...
      (comp.unix.shell)