Because NIS+ is a PITA to install/maintain. I have replaced a lot (60) of enterprise NIS implementations with a commercial Kerberos/LDAP solution and I have only come across one NIS+ installation that was actually being used.
Another reason many people are dumping NIS, and you may want to too, is that it fails most IT compliance audits due to its insecurity. Because these material deficiencies have to be reported if you are a publically traded company combined with the fact Sun has EOL'd it, are making it a tombstone technology quickly. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kenneth Burgener Sent: Wednesday, May 23, 2007 2:13 PM To: Provo Linux Users Group Mailing List Subject: Re: Linux password server? Stuart Jansen wrote: > Longer answer: No. Slap anyone that suggests NIS. Pity anyone that > suggests NIS+. NIS sent passwords unencrypted. NIS+ seems to indicate encryption. "NIS+ additionally supports secure and encrypted RPC, which helps greatly to solve the security problems of NIS."[1] Curious, why is NIS+ a poor choice? [1]http://www.faqs.org/docs/linux_network/x-087-2-nis.nisplus.html /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */ /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
