From owner-freebsd-isp@FreeBSD.ORG  Sat Oct 15 05:21:47 2005
Return-Path: <owner-freebsd-isp@FreeBSD.ORG>
X-Original-To: freebsd-isp@freebsd.org
Delivered-To: freebsd-isp@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id C8BE316A41F
	for <freebsd-isp@freebsd.org>; Sat, 15 Oct 2005 05:21:47 +0000 (GMT)
	(envelope-from peterclutton@gmail.com)
Received: from xproxy.gmail.com (xproxy.gmail.com [66.249.82.193])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 65DFC43D45
	for <freebsd-isp@freebsd.org>; Sat, 15 Oct 2005 05:21:47 +0000 (GMT)
	(envelope-from peterclutton@gmail.com)
Received: by xproxy.gmail.com with SMTP id t13so506798wxc
	for <freebsd-isp@freebsd.org>; Fri, 14 Oct 2005 22:21:46 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com;
	h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references;
	b=pTcCcVqm4jpaLcs/9boSO1fRRM1UwRrHvZ9dGr8v+CprCYxR7ap9/Mt5upI98yMH18VxsHuYwgnM1YTTzSECR9gVwvpMQxWiG4s10oh0FwfcdWPSLNlzggyo3tCZ83GckdH8BmVw7H19Me9IQiMBzjlpR8fbgmlDEOfQMQnvQoY=
Received: by 10.70.76.12 with SMTP id y12mr1578316wxa;
	Fri, 14 Oct 2005 22:21:46 -0700 (PDT)
Received: by 10.70.91.17 with HTTP; Fri, 14 Oct 2005 22:21:46 -0700 (PDT)
Message-ID: <57416b300510142221r2c3da329o65d54cb0aa04fc73@mail.gmail.com>
Date: Fri, 14 Oct 2005 22:21:46 -0700
From: Peter Clutton <peterclutton@gmail.com>
To: Francisco Reyes <lists@natserv.com>
In-Reply-To: <20051012234337.K63956@zoraida.natserv.net>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
References: <20051012234337.K63956@zoraida.natserv.net>
Cc: FreeBSD ISP list <freebsd-isp@freebsd.org>
Subject: Re: Distributed authentication. Which one?
X-BeenThere: freebsd-isp@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Internet Services Providers <freebsd-isp.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-isp>,
	<mailto:freebsd-isp-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-isp>
List-Post: <mailto:freebsd-isp@freebsd.org>
List-Help: <mailto:freebsd-isp-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-isp>,
	<mailto:freebsd-isp-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 15 Oct 2005 05:21:47 -0000

On 10/14/05, Francisco Reyes <lists@natserv.com> wrote:
> I inherited a number of machines and now have to deal with maintaining a
> small set of users accros 20 machines.
> Currently using MySQL accross different machines, but not shared. Would
> like to have a single way to authenticate all email users accross all
> machines.
>
> Preferably a distributed system which can run on top of PostgreSQL.

Well questions of which one are all a matter of opinion. LDAP is an
established implementation of the .x500 standard, and the open version
OpenLDAP can run with a mysql backend. It sounds like it would fulfil
your needs.

Kerberos is an authentication protocol rather than a directory
service, and NIS is a simple directory service introduced by Sun.

Hope that helps!