SUMMARY: C2 and NIS maps

From: Piotr Machowski (pms@galaxy.uci.agh.edu.pl)
Date: Sat May 08 1993 - 13:51:48 CDT


Description:

  Machine: SS690MP (w/ 2 ROSSes) running SunOS 4.1.3

  Problems:

: 1) how to prevent users (including root!) on NIS clients from reading
: encrypted passwords from *.adjunct.byname maps (but allowing them to
: authorize from NIS)?

     UNSOLVED!!!

: 2) how to ensure that only trusted machines can connect as NIS clients
: to our server?

  I've found only a 'partial' solution for this: SunOS patch # 100482-04.
  When applied it restricts NIS propagation to subnets specified in
  /var/yp/securenets.

  Thanks to Bob Cunningham <bob@kahala.soest.hawaii.edu> -- he was the
  one who told me about 100482.

/*--------------------------------------*-----------------------------------*\
| University of Mining and Metallurgy | Piotr Machowski |
| Computer Centre | SUN & VAX systems manager |
| 30-059, Krakow, Poland | |
| av. Mickiewicza 30 | tel: (+48 12) 33 81 00 ext 28 85 |
| tel/fax (+48 12) 338907, tlx 0322203 | pms@uci.agh.edu.pl, pms@plkagh11 |
\*--------------------------------------*-----------------------------------*/



This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:07:49 CDT