[4389] in linux-net channel archive
Re: Authentication Server
daemon@ATHENA.MIT.EDU (Dominik Kubla)
Sun Sep 15 07:22:27 1996
To: clameter@miriam.fuller.edu (Christoph Lameter)
cc: linux-net@vger.rutgers.edu
In-reply-to: Your message of "14 Sep 1996 16:18:09 PDT."
<51fefh$bhk@miriam.fuller.edu>
Date: Sun, 15 Sep 1996 13:00:27 +0200
From: Dominik Kubla <kubla@netz.klinik.uni-mainz.de>
> The easy way is to use NIS because most if not all Unixes support it. Anything
> else will cause a lot of trouble with some system or another.
And anything else will make it harder to crack the passwords of your users!
Making the passwd database accessible to anyone (and it is, unless you are
blocking ONC-RPC access in your InterNet router) means you are begging for
trouble.
> NIS is simple and universal.
And it is definitely not supported by routers, terminal servers and the like.
If you really want to play it save, use RADIUS for your network access servers
and Kerberos for your hosts.
Yours,
Dominik Kubla
