From: NAME: Derek Alexander
FUNC: Information Systems
TEL: 03552 62068 <ALEXANDERD_at_A1_at_ISLES>
To: alpha-osf-managers%ornl.gov_at_internet
Dear OSF-Managers
We are currently developing some client/server applications (PCs to DEC Alpha
2100s OSF) and need to find a secure method for users on the PCs to change
their server passwords. We are using the OSF usernames of the server as the
access control to the server part of the applications.
I have already asked DEC if they had any suggestions on doing this, but all
they could come up with was to try and use NIS/YP on the PC to change the
password on the OSF box. They did not have a NIS/YP client for windows/dos.
Does anyone have any other suggestions or know of a NIS/YP implementation for
windows/dos?
I have been very surprised at this apparent hole in the client/server
technology! This seems to be an area that gets missed out when looking at
client/server applications. We are installing our application in the next 2
months and only now have realised that we have got a security problem.
Regards
Derek Alexander
Corporate Technical Support
Scottish Nuclear
Derek.Alexander_at_snl.co.uk
Received on Sun Feb 19 1995 - 08:40:37 NZDT