If you are worried about the users getting the ldap bind password - then
why on earth would you bother with NIS? NIS has no password to block
binding at all! At least ldap has a binding password...
On Tue, 22 Aug 2006, Leandro Melo de Sales wrote:
Hi!
I configured my gentoo server box to authenticate users through LDAP
(nsswicth+pam_ldap). Everything are working fine and now I want to run
a ypserv and as a result I want the nis clients authenticating against
my server. I following the instructions in
http://gentoo-wiki.com/HOWTO_Setup_NIS but the clients (gentoo and
ubuntu boxes) don't find the ypserver, any clue?
I was planning to make the clients authentication directly to LDAP
server, but in this case I have to install pam_ldap and create a
/etc/ldap.conf and put ldap bindpw into this file or in
/etc/ldap.secret. Even if I protect it with 600 the use can get this
file installing a windows application (the client machines have dual
boot) that read ext3 partitions and read the files, finally getting
the bindpw. Any comment about this? Am I thinking wrong about that?
Thank you. BTW, all suggestion will be greatfully accepted.
Leandro.
--
Bryan Whitehead
Email:[EMAIL PROTECTED]
--
gentoo-user@gentoo.org mailing list
