Date: Fri, 22 May 1998 03:55:31 +0200 From: Palle Girgensohn <girgen@partitur.se> To: questions@FreeBSD.ORG Subject: distributed passwords? Message-ID: <3564DB13.2255D537@partitur.se>
next in thread | raw e-mail | index | archive | help
Hello! We have a mixed bunch of computers (FreeBSD, Solaris, Macs, Windows). On the servers (FreeBSD, of course) we run netatalk and samba for windows and mac users. Lots of stuff is nfs mounted for the unix workstations. Now, we are considering a way to distribute passwords. NIS is one way to go, but it's rather insecure, right? The other way would be Kerberos. (A third way would be to automatically copy password files around. ) I'd like to hear your opinions! With Kerberos, I guess I get a lot of trouble with the mac and windows clients? Also, programs that are not kerberized will need to authenticate without kerberos. Will this require a sparate password database for traditional authentications? I would love to go with Kerberos if I knew that if wouldn't give me problems. I know almost for certain that it will :( NIS seems fine, but need at least a package filtering router (IPFW?) to be any bit secure, I guess. Maybe that goes for both... NIS will not give me the client problems, since it uses traditional logins. Experiences? Recommendations? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3564DB13.2255D537>