Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Change to NIS netgroup definition in upcoming Internet Draft
Top Forums UNIX for Advanced & Expert Users Change to NIS netgroup definition in upcoming Internet Draft Post 302799099 by cjcox on Thursday 25th of April 2013 06:02:49 PM
Old 04-25-2013
IMHO, don't change what you don't understand. Makes sense? Right?

I think maybe it would be better to describe your RFC (why the secret?).
 

10 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

NIS problem with netgroup

Hi@all, I'd setup a nis server and 4 slaves. Update of passwd work's fine, but if i create a netgroup file the make all process hang by push the netgroup file. I work with AIX 4.3.3.0 and Maintance Level 5. Tank's for help (1 Reply)
Discussion started by: Michael
1 Replies

2. UNIX for Dummies Questions & Answers

Change NIS Passwords without dxaccounts/SAM?

Hi, if I am dialling in remotely it takes a long time to launch dxaccounts on Tru64 or SAM on our HP boxes. Can anyone tell me how to reset users NIS passwords without knowing their old password from the command line? When I use yppasswd it prompts me for the old password even though I am... (1 Reply)
Discussion started by: sjmolloy
1 Replies

3. Solaris

Change hostname, NIS stops

All, I have changed my machine name from A202 to B205. All I modified was /etc/hosts, /etc/nodename, hostname.ce0, /etc/net/<stuff needed to change>. But for some reason now NIS does not work. This is not the NIS server. When I telnet in I get "No directory! Logging in with home=/" when I... (4 Replies)
Discussion started by: kjbaumann
4 Replies

4. Shell Programming and Scripting

NIS User UID Change

Hi All, I need to change the UID numbers of many NIS users, is there any command to modify the UID in NIS maps ? ( like usermod) so that their file permissions will be same even with their new UID. If not, how to check all the files owned by particular user in a computer and change the... (1 Reply)
Discussion started by: RAA
1 Replies

5. UNIX for Advanced & Expert Users

NIS server IP change

I am changing the IP on my NIS server. Are there any files that need to be changed on my other servers that are using NIS? (1 Reply)
Discussion started by: calamine
1 Replies

6. Shell Programming and Scripting

How to change the user id from 672 to 673 in NIS

Hi, Can anyone tell me how to change the user id in NIS.I have created a NIS user.The user id i got is that 672.The same user id is assigned to some other user.So i want to do change from 672 to 673.Can anyone help me with this one. (0 Replies)
Discussion started by: yogks
0 Replies

7. Solaris

NIS - Change Password @ first login.

Hi Any body knows how to prompt user to change password on first login in a Solaris NIS client. Thanks HG (3 Replies)
Discussion started by: Hari_Ganesh
3 Replies

8. UNIX for Dummies Questions & Answers

NIS Group, Netgroup

Hi all, Is there a way for me to know the NIS group and Netgroup my UNIX account? Thank you. (0 Replies)
Discussion started by: risk_sly
0 Replies

9. AIX

Slave NIS server configuration change

Hello Everybody, I have a question regarding SLAVE NIS SERVER in aix. We are using NIS master of Sun Solaris 9.0 which is on different subnet i.e. 10.197.93.0. And Our slave server is having AIX 5.3 installed which is on 10.207.13.0 subnet. I have a query regarding its name and ip address... (0 Replies)
Discussion started by: jit15975
0 Replies

10. Linux

/etc/security/limits.conf NIS netgroup support

Hi there, I am trying to set a ulimit max in the /etc/security/limits.conf against a NIS netgroup (which contains a whole bunch of users) instead of a local user or group. so I have a NIS netgroup called +@myusers , none of whose users are defined locally on the box. I want to ensure that... (2 Replies)
Discussion started by: rethink
2 Replies

LEARN ABOUT DEBIAN

slappasswd

SLAPPASSWD(8)						      System Manager's Manual						     SLAPPASSWD(8)

NAME

       slappasswd - OpenLDAP password utility

SYNOPSIS

       /usr/sbin/slappasswd [-v] [-u] [-g|-s secret|-T file] [-h hash] [-c salt-format] [-n]

DESCRIPTION

       Slappasswd  is  used to generate an userPassword value suitable for use with ldapmodify(1), slapd.conf(5) rootpw configuration directive or
       the slapd-config(5) olcRootPW configuration directive.

OPTIONS

       -v     enable verbose mode.

       -u     Generate RFC 2307 userPassword values (the default).  Future versions of this program may generate alternative syntaxes by  default.
	      This option is provided for forward compatibility.

       -s secret
	      The  secret  to  hash.  If this, -g and -T are absent, the user will be prompted for the secret to hash.	-s, -g and -T are mutually
	      exclusive flags.

       -g     Generate the secret.  If this, -s and -T are absent, the user will be prompted for the secret to hash.  -s, -g and -T  are  mutually
	      exclusive flags.	If this is present, {CLEARTEXT} is used as scheme.  -g and -h are mutually exclusive flags.

       -T "file"
	      Hash  the contents of the file.  If this, -g and -s are absent, the user will be prompted for the secret to hash.  -s, -g and -T and
	      mutually exclusive flags.

       -h "scheme"
	      If -h is specified, one of the following RFC 2307 schemes may be specified: {CRYPT}, {MD5}, {SMD5}, {SSHA}, and {SHA}.  The  default
	      is {SSHA}.

	      Note that scheme names may need to be protected, due to { and }, from expansion by the user's command interpreter.

	      {SHA} and {SSHA} use the SHA-1 algorithm (FIPS 160-1), the latter with a seed.

	      {MD5} and {SMD5} use the MD5 algorithm (RFC 1321), the latter with a seed.

	      {CRYPT} uses the crypt(3).

	      {CLEARTEXT} indicates that the new password should be added to userPassword as clear text.  Unless {CLEARTEXT} is used, this flag is
	      incompatible with option -g.

       -c crypt-salt-format
	      Specify the format of the salt passed to crypt(3) when generating {CRYPT} passwords.  This string needs to be in	sprintf(3)  format
	      and  may	include  one  (and  only  one) %s conversion.  This conversion will be substituted with a string of random characters from
	      [A-Za-z0-9./].  For example, '%.2s' provides a two character salt and '$1$%.8s' tells some versions of crypt(3) to use an MD5  algo-
	      rithm and provides 8 random characters of salt.  The default is '%s', which provides 31 characters of salt.

       -n     Omit the trailing newline; useful to pipe the credentials into a command.

LIMITATIONS

       The practice of storing hashed passwords in userPassword violates Standard Track (RFC 4519) schema specifications and may hinder interoper-
       ability.  A new attribute type, authPassword, to hold hashed passwords has been defined (RFC 3112), but is not yet implemented in slapd(8).

       It should also be noted that the behavior of crypt(3) is platform specific.

SECURITY CONSIDERATIONS

       Use of hashed passwords does not protect passwords during protocol transfer.  TLS or other eavesdropping  protections  should  be  in-place
       before using LDAP simple bind.

       The hashed password values should be protected as if they were clear text passwords.

SEE ALSO

       ldappasswd(1), ldapmodify(1), slapd(8), slapd.conf(5), slapd-config(5), RFC 2307, RFC 4519, RFC 3112

       "OpenLDAP Administrator's Guide" (http://www.OpenLDAP.org/doc/admin/)

ACKNOWLEDGEMENTS

       OpenLDAP  Software  is developed and maintained by The OpenLDAP Project <http://www.openldap.org/>.  OpenLDAP Software is derived from Uni-
       versity of Michigan LDAP 3.3 Release.

OpenLDAP							    2012/04/23							     SLAPPASSWD(8)
All times are GMT -4. The time now is 03:50 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy