Re: UNIX Authentication

• Previous message: Paulius M.: "Re: UNIX Authentication"
• In reply to: Luca Falavigna: "UNIX Authentication"
• Next in thread: Ben Nelson: "Re: UNIX Authentication"
• Reply: Ben Nelson: "Re: UNIX Authentication"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Fri, 19 Dec 2003 15:10:22 +0000 (GMT)
To: Luca Falavigna <fala83@libero.it>

On Thu, 18 Dec 2003, Luca Falavigna wrote:
> What is the best auhentication system in a UNIX-based LAN?
> I've tried NIS but it uses plaintext password and I'm looking for
> something safer.
Dont know about best/safer, since these are related to your environments
and associated policies. As for alternatives, your in luck as Linux
supports quite a few for authentication and key UNIX file
storage/distribution form central locations:
- Kerberos (encrytped and ticketed based system) that requires modified
client software to fully utilise. Uses UDP so may be not fit well into
your network security environment.
- LDAP seems to be the preferred method ongoing for SUN, and does
everyting NIS/NIS+ does with SSL/TLS style encryption if required.
- NIS+ I did see work/port for Linux for this, however SUN have made
written nioses that its time to deprecate NIS+ (and presumably NIS at some
stage), so I'd stay away personally. RPC and UDP may not fit well with
your network security environment.
- Hesoid. Dont know much about it except it seems to store info in DNS
(but then I may be wrong).

If its just auth your worried about, instead of auth + essential UNIX
conf/service files, then Linux PAM supports most common protocols
including:
- RADIUS
- TACACS+
- Even Windows SMB
- + MANY MANY others

HTH

Gareth

• Previous message: Paulius M.: "Re: UNIX Authentication"
• In reply to: Luca Falavigna: "UNIX Authentication"
• Next in thread: Ben Nelson: "Re: UNIX Authentication"
• Reply: Ben Nelson: "Re: UNIX Authentication"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Sparc SOlaris nis client to Linux NIS server ... >> nis client. ... I logon as root. ... >> Linux NIS server). ... >> I found was that when logging on the Solaris box via CDE it is not sending ... (comp.unix.solaris) Re: Solaris: The Most Advanced OS? ... > ml> Is NIS reliable? ... you're conflating two different things: security and reliability. ... > ml> So the major advantages of Solaris is better support of obsolete ... Linux is in the future. ... (Debian-User) RE: sunmanagers Digest, Vol 9, Issue 45 ... I've got linux Redhat7.2 machine client of Solaris server. ... The autofs daemon is however configured to start at boot, ... Thus I should add entries on /etc/auto.master file for my NIS maps to be ... (SunManagers) How to reject NIS maps ... I have a NIS setup with Solaris 7 as the NIS Server and some Linux ... automounter map file, which is perfectly suitable for Sun NIS Clients, ... Linux boxes from "seeing" the map file. ... (linux.redhat.misc) How to reject NIS maps ... I have a NIS setup with Solaris 7 as the NIS Server and some Linux ... automounter map file, which is perfectly suitable for Sun NIS Clients, ... Linux boxes from "seeing" the map file. ... (comp.os.linux.misc)