Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Change to NIS netgroup definition in upcoming Internet Draft
Top Forums UNIX for Advanced & Expert Users Change to NIS netgroup definition in upcoming Internet Draft Post 302800145 by cambridge on Monday 29th of April 2013 05:24:59 AM
Old 04-29-2013
Quote:
Originally Posted by frank_rizzo
Do companies really still use NIS? Just curious. It'd been a long time since I have used it and I don't see a legitimate use for it these days. LDAP is a much better replacement for many reasons and is also very scalable.
Surprisingly, yes they do. LDAP is not a replacement for NIS, it is a network protocol for accessing an X.500-based directory. NIS data can be stored in an LDAP-compliant directory using the RFC2307 schema, which then allows for NIS maps such as passwd, group, netgroup, protocols, services etc. to be served using LDAP instead, and this is what many people are moving towards. However, there are limitations with the RFC2307 schema that I am addressing, such as when it introduces case insensitivity where case sensitivity previously existed and general lack of flexibility when working with data in large complex organisations. As part of addressing these things, I would like to revisit netgroups and improve them, hence my original posting. I'll take it that the majority of people don't use the domain portion of the netgroup triple, go ahead and redefine it in my draft, and seek further comment once published.
 

10 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

NIS problem with netgroup

Hi@all, I'd setup a nis server and 4 slaves. Update of passwd work's fine, but if i create a netgroup file the make all process hang by push the netgroup file. I work with AIX 4.3.3.0 and Maintance Level 5. Tank's for help (1 Reply)
Discussion started by: Michael
1 Replies

2. UNIX for Dummies Questions & Answers

Change NIS Passwords without dxaccounts/SAM?

Hi, if I am dialling in remotely it takes a long time to launch dxaccounts on Tru64 or SAM on our HP boxes. Can anyone tell me how to reset users NIS passwords without knowing their old password from the command line? When I use yppasswd it prompts me for the old password even though I am... (1 Reply)
Discussion started by: sjmolloy
1 Replies

3. Solaris

Change hostname, NIS stops

All, I have changed my machine name from A202 to B205. All I modified was /etc/hosts, /etc/nodename, hostname.ce0, /etc/net/<stuff needed to change>. But for some reason now NIS does not work. This is not the NIS server. When I telnet in I get "No directory! Logging in with home=/" when I... (4 Replies)
Discussion started by: kjbaumann
4 Replies

4. Shell Programming and Scripting

NIS User UID Change

Hi All, I need to change the UID numbers of many NIS users, is there any command to modify the UID in NIS maps ? ( like usermod) so that their file permissions will be same even with their new UID. If not, how to check all the files owned by particular user in a computer and change the... (1 Reply)
Discussion started by: RAA
1 Replies

5. UNIX for Advanced & Expert Users

NIS server IP change

I am changing the IP on my NIS server. Are there any files that need to be changed on my other servers that are using NIS? (1 Reply)
Discussion started by: calamine
1 Replies

6. Shell Programming and Scripting

How to change the user id from 672 to 673 in NIS

Hi, Can anyone tell me how to change the user id in NIS.I have created a NIS user.The user id i got is that 672.The same user id is assigned to some other user.So i want to do change from 672 to 673.Can anyone help me with this one. (0 Replies)
Discussion started by: yogks
0 Replies

7. Solaris

NIS - Change Password @ first login.

Hi Any body knows how to prompt user to change password on first login in a Solaris NIS client. Thanks HG (3 Replies)
Discussion started by: Hari_Ganesh
3 Replies

8. UNIX for Dummies Questions & Answers

NIS Group, Netgroup

Hi all, Is there a way for me to know the NIS group and Netgroup my UNIX account? Thank you. (0 Replies)
Discussion started by: risk_sly
0 Replies

9. AIX

Slave NIS server configuration change

Hello Everybody, I have a question regarding SLAVE NIS SERVER in aix. We are using NIS master of Sun Solaris 9.0 which is on different subnet i.e. 10.197.93.0. And Our slave server is having AIX 5.3 installed which is on 10.207.13.0 subnet. I have a query regarding its name and ip address... (0 Replies)
Discussion started by: jit15975
0 Replies

10. Linux

/etc/security/limits.conf NIS netgroup support

Hi there, I am trying to set a ulimit max in the /etc/security/limits.conf against a NIS netgroup (which contains a whole bunch of users) instead of a local user or group. so I have a NIS netgroup called +@myusers , none of whose users are defined locally on the box. I want to ensure that... (2 Replies)
Discussion started by: rethink
2 Replies

LEARN ABOUT FREEBSD

netgroup

NETGROUP(5)						      BSD File Formats Manual						       NETGROUP(5)

NAME

     netgroup -- defines network groups

SYNOPSIS

     netgroup

DESCRIPTION

     The netgroup file specifies ``netgroups'', which are sets of (host, user, domain) tuples that are to be given similar network access.

     Each line in the file consists of a netgroup name followed by a list of the members of the netgroup.  Each member can be either the name of
     another netgroup or a specification of a tuple as follows:

	   (host, user, domain)

     where the host, user, and domain are character string names for the corresponding component.  Any of the comma separated fields may be empty
     to specify a ``wildcard'' value or may consist of the string ``-'' to specify ``no valid value''.	The members of the list may be separated
     by whitespace and/or commas; the ``'' character may be used at the end of a line to specify line continuation.  Lines are limited to 1024
     characters.  The functions specified in getnetgrent(3) should normally be used to access the netgroup database.

     Lines that begin with a # are treated as comments.

NIS
/YP INTERACTION
     On most other platforms, netgroups are only used in conjunction with NIS and local /etc/netgroup files are ignored.  With FreeBSD, netgroups
     can be used with either NIS or local files, but there are certain caveats to consider.  The existing netgroup system is extremely inefficient
     where innetgr(3) lookups are concerned since netgroup memberships are computed on the fly.  By contrast, the NIS netgroup database consists
     of three separate maps (netgroup, netgroup.byuser and netgroup.byhost) that are keyed to allow innetgr(3) lookups to be done quickly.  The
     FreeBSD netgroup system can interact with the NIS netgroup maps in the following ways:

	   o   If the /etc/netgroup file does not exist, or it exists and is empty, or it exists and contains only a '+', and NIS is running,
	       netgroup lookups will be done exclusively through NIS, with innetgr(3) taking advantage of the netgroup.byuser and netgroup.byhost
	       maps to speed up searches.  (This is more or less compatible with the behavior of SunOS and similar platforms.)

	   o   If the /etc/netgroup exists and contains only local netgroup information (with no NIS '+' token), then only the local netgroup
	       information will be processed (and NIS will be ignored).

	   o   If /etc/netgroup exists and contains both local netgroup data and the NIS '+' token, the local data and the NIS netgroup map will
	       be processed as a single combined netgroup database.  While this configuration is the most flexible, it is also the least effi-
	       cient: in particular, innetgr(3) lookups will be especially slow if the database is large.

FILES

     /etc/netgroup  the netgroup database

COMPATIBILITY

     The file format is compatible with that of various vendors, however it appears that not all vendors use an identical format.

SEE ALSO

     getnetgrent(3), exports(5)

BUGS

     The interpretation of access restrictions based on the member tuples of a netgroup is left up to the various network applications.  Also, it
     is not obvious how the domain specification applies to the BSD environment.

     The netgroup database should be stored in the form of a hashed db(3) database just like the passwd(5) database to speed up reverse lookups.

BSD
								 December 11, 1993							       BSD
All times are GMT -4. The time now is 04:58 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy