similar to: How insecure is NIS ? Possible alternatives ?

Le 26/03/2018 ? 10:28, isdtor a ?crit : > In my opionion, there is a serious gap in this area. It's either NIS, > simple, easy to setup yet insecure, or LDAP/FreeIPA/RH Id management > server at a complexity at least one order of magnitude beyond NIS. I gave FreeIPA a spin a while back. I installed it on a sandbox server, and from what I recall, it pulled in a tsunami of

On 2018-03-26, Leon Fauster <leonfauster at googlemail.com> wrote: > > Quite time ago we had a stripped setup here working only with Openldap and > PAM modules. LDAP with replication for redundancy, centralized communication > with local CA and over TLS. It worked very well. The successor of such setup > is SSSD for EL7 but the above should be still a feasible solution.

Hi, Over the last few years, I've been using a rather bone-headed solution to implement centralized authentication and roamin user profiles in Linux-based networks: a combination of NIS and NFS. I'm aware it's not ideal in terms of security, but it's been running in our local school since 2010, and it just works. The current setup is based on Slackware Linux on both server

> Am 26.03.2018 um 11:59 schrieb Nicolas Kovacs <info at microlinux.fr>: > > Le 26/03/2018 ? 10:28, isdtor a ?crit : >> In my opionion, there is a serious gap in this area. It's either NIS, >> simple, easy to setup yet insecure, or LDAP/FreeIPA/RH Id management >> server at a complexity at least one order of magnitude beyond NIS. > > I gave FreeIPA a

On Mon, Mar 26, 2018 at 9:07 PM, Nicolas Kovacs <info at microlinux.fr> wrote: > Hi, > > In the past I've setup simple centralized authentication with NIS and > NFS, without bothering about possible security implications. > > Over the next month I have to setup a new network in a local school, and > I wonder if I should use NIS/NFS. I still have my own

Nicolas Kovacs writes: > Le 09/04/2020 ? 02:42, Mark LaPierre a ?crit?: > > Does anyone know where I can get NIS for CentOS 8? > > According to the Release Notes, NIS has been officially deprecated in CentOS 8. > > You might want to move to 389 Directory Server. Robust, secure and well-documented. NIS works fine on CentOS 8. Certainly the client side. But how it's

> Over the next month I have to setup a new network in a local school, and > I wonder if I should use NIS/NFS. I still have my own documentation, > it's simple and somewhat bone-headed to setup, and it just works. In my opionion, there is a serious gap in this area. It's either NIS, simple, easy to setup yet insecure, or LDAP/FreeIPA/RH Id management server at a complexity at

On 26/03/2018 15:14, Gordon Messmer wrote: > FreeIPA takes all of one command to install, and one to set up. It > provides a web UI for both administrative and end-user management of > users, passwords, login and sudo policy, etc. Anything you find overly > complex can simply be unused. FreeIPA is easy to set up, but it is quite a complex beast under the hood. I've had some nasty

On 02/24/2015 01:15 AM, Gordon Messmer wrote: > On 02/23/2015 08:22 AM, Niki Kovacs wrote: >> 1. Users should be manageable through a GUI, probably a web interface, >> so the client can create, manage and delete them eventually. > > FreeIPA is a good option, generally. As best I understand it, it's > currently available in a Docker container for CentOS. >

Le 29/03/2018 ? 06:44, Keith Keller a ?crit : > I wonder how much support there is for NIS any more in recent > distros. Is it possible CentOS 7 doesn't support NIS, or does but is > buggy? I'm planning to test this very soon, probably during the next week, and I'll report back. Cheers from another ex-Slackware user who migrated to CentOS. :o) Niki -- Microlinux -

On 03/26/2018 02:59 AM, Nicolas Kovacs wrote: > I gave FreeIPA a spin a while back. I installed it on a sandbox server, > and from what I recall, it pulled in a tsunami of dependencies, and > first thing it wanted to replace my Dnsmasq with BIND... so I didn't > look much further. FreeIPA should be installed on its own server or VM, in which case its dependencies and what it

> Am 26.03.2018 um 16:31 schrieb Tom Grace <lists-in at deathbycomputers.co.uk>: > > On 26/03/2018 15:14, Gordon Messmer wrote: >> FreeIPA takes all of one command to install, and one to set up. It >> provides a web UI for both administrative and end-user management of >> users, passwords, login and sudo policy, etc. Anything you find overly >> complex can

Hello listmates, We are currently running NIS for authentication but would like to migrate to LDAP. Thing is, though, that some of the machines that authenticate via NIS are so old I'd rather not even touch them. Hence the question - is there a good way to have an NIS server for user authentication that is a mirror image of an LDAP server, with a proviso that an update introduced there is

Hey all, Does anyone know where I can get NIS for CentOS 8? -- _ ?v? /(_)\ ^ ^ Mark LaPierre Registered Linux user No #267004 https://linuxcounter.net/ ****

Hi, I have to do some maintenance on a CentOS 7 proxy installed on a routerboard without a video card. The only way to access this machine directly is via Minicom and serial port. I'm using NetworkManager TUI (nmtui) to configure network interfaces, but Ncurses rendering in Minicom works in the sense that chickens fly and horses swim. What you get is a forest of question marks with a few

Well, after three days of beating my head against my desk, I'm waving the white flag.? I've got a CentOS 6.4 box (yeah, I know) that I blew away the OpenLDAP client and installed the freeipa-client as we're transitioning off this terrible OpenLDAP implementation here.? Everything installed fine, and while I'm still tweaking the ansible playbook for completely flushing PAM and

Nicolas Kovacs writes: > Le 09/04/2020 ? 11:05, isdtor a ?crit : > > NIS works fine on CentOS 8. Certainly the client side. But how it's enabled > > is different, check the manual. authconfig is replaced with authselect. > > NIS "works fine" in the sense that telnet works fine. > > :o) It is not our job here to second-guess implementation decisions made

On 04/12/2017 06:18 PM, John R Pierce wrote: > On 4/12/2017 3:11 PM, Nicolas Kovacs wrote: >> On my public servers, I usually run BIND for DNS. I see CentOS offers a >> preconfigured (sort of) bind-chroot package. I wonder what's the >> effective benefit of this vs. a "normal" BIND setup without chroot. On >> my Slackware servers, I have a rather

Hi, I just installed CentOS 7 on a public server. I'd like to setup BIND as a primary DNS server for a few domains. Until now, all my public machines were running Slackware Linux, and setting up BIND on a Slackware machine is relatively easy. In its out of the box configuration, it has a bone-headed caching nameserver role, which is quite easy to expand to a primary nameserver. Here's my

100% with Digimer here. I think there are no conspiracy theories. IMO RedHat does not want nor does it afford to mess up CentOS. All this energy should be put into contributing towards to the project, testing, helping out community. Lucian -- Sent from the Delta quadrant using Borg technology! Nux! www.nux.ro ----- Original Message ----- > From: "Digimer" <lists at