Well, the files will be going from one RH6.1 box to another RH6.1 box. I
pretty much always use shadow and MD5 on every box I build, so I'm hoping
that it works. I've never really used NIS, since by the time I got into all
of this stuff, there were enough horror stories about it that I figured I
might as well not even bother.
Kenny
Kenneth E. Lussier
FISC-RMS
"The best things (software) in life are FREE"
> -----Original Message-----
> From: Paul Lussier [SMTP:[EMAIL PROTECTED]]
> Sent: Thursday, March 16, 2000 9:30 AM
> To: Derek Martin
> Cc: Kenneth E. Lussier; [EMAIL PROTECTED]
> Subject: Re: portable passwords?
>
> In a message dated: Wed, 15 Mar 2000 20:36:17 EST
> Derek Martin said:
>
> >Today, Kenneth E. Lussier gleaned this insight:
> >
> >> All,
> >> Is the passwd files portable? In other words, can I copy passwd,
> >> passwd-, group, group-, shadow, shadow-, gshadow, gshadow-, smbusers,
> >> and smbpasswd from one system to another? I want to build a box but
> have
> >> all of the same users/passwds on it as another system does.
> >
> >Yes! But with one caveat: you may have trouble if you don't have the
> same
> >authentication configured on all hosts. For example, on RedHat, you can
> >chose to use or not use shadow passwords, and you can chose or not chose
> >MD5 passwords, or some combination of the two. If your target hosts
> don't
> >have the same scheme, they will probably not work too well.
>
> Yeah, if you use MD5 on Linux, there's no way it will work elsewhere if
> you
> don't also use MD5 on that platform too. Take a look at an MD5 encrypted
> password sometime. It's drastically different than a normal crypt()'ed
> passwd.
>
> As far as smbpasswd files, I expect you should be okay, but keep in mind
> that
> SMB based passwords may also have the systems SID mixed into the
> encryption,
> and SIDs are obviously different from one system to another.
>
> If you really need to move an smbpasswd file entry (and not the whole
> file)
> you're probably better off moving the /etc/passwd file entry and
> recreating
> the smbpasswd file entry from that.
>
> Of course, you can always just try all this stuff and report back to us
> what
> works and what doesn't :)
> --
> Seeya,
> Paul
> ----
> Doing something stupid always costs less (up front)
> than doing something intelligent.
> A conclusion is simply the place where you got tired of thinking.
> If you're not having fun, you're not doing it right!
>
>
>
> **********************************************************
> To unsubscribe from this list, send mail to
> [EMAIL PROTECTED] with the following text in the
> *body* (*not* the subject line) of the letter:
> unsubscribe gnhlug
> **********************************************************
**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************
