Hello -
I am working with a group of systems that currently make extensive use of NIS
for password information. They would like to enable C2 security to get shadow
password and account aging features, but do NOT care to discontinue the use
of NIS (yet; they will eventually move to kerberos 4).
My experiments thus far indicate that once C2 is enabled, NIS information is
thereafter ignored. Can anyone confirm or deny this observation?
I have tried "local,yp" and "yp,local" in the svc.conf file. I have also
tried importing and not importing from NIS when I run secsetup. All four
combinations fail in one form or another.
I have observed that using "convuser -n" on a regular basis (i.e. once per
minute from cron) is an interresting hack to keep the C2 environment merged
with the NIS environment. However, the password aging mechanisms of C2 don't
invoke "yppasswd", which results in a skewing of the information in undesired
ways. Is there a hack to be abel to use yppasswd instead of passwd (which I
guess implies a change to setpwent(3))?
Any suggestions and comments are desired. Please e-mail me directly and I
will summarize.
Thanks in advance - Marc
===============================================================================
Marc Evans WB1GRH The Destek Networking Group
E-Mail: Marc_at_Destek.NET One Indian Head Plaza
URL:
http://WWW.Destek.NET/~marc Nashua, NH, USA 03060
MIME-1.0 & Enriched-Text mail accepted 603 594 9630 (V) 598 8864 (F)
PGP-2.6 key available upon request WAN & Internet Services
PGP-2.6 Fingerprint: 20 7C A2 DB 17 B2 21 80 47 AA B9 CD D9 DE 31 CC
The XFree86[tm] Project, Inc. Industry Liason <Marc_at_XFree86.Org>
===============================================================================
Received on Fri Apr 10 1998 - 14:55:40 NZST