NETGROUP(5) NIS Reference Manual NETGROUP(5)NAME
netgroup - specify network groups
DESCRIPTION
The netgroup file defines "netgroups", which are sets of (host, user, domain) tuples, used for permission checking when doing remote
mounts,remote logins and remote shells.
Each line in the file consists of a netgroup name followed by a by a list of members, where a member is either another netgroup name, or a
triple:
(host, user, domain)
where the host, user, and domain are character strings for the corresponding components. Any of the three fields can be empty, in which
case it specifies a "wildcard", or may consist of the string "-" to specify "no valid value". The domain field must either be the local
domain name or empty for the netgroup entry to be used. This field does not limit the netgroup or provide security. The domain field refers
to the domain in which the triple is valid, not the domain containing the the trusted host.
A gateway machine should be listed under all possible hostnames by which it may be recognized:
gateway (server, , ) (server-sn, , ) (server-bb, , )
The getnetgrent(3), function should normally be used to access the netgroup database.
FILES
/etc/netgroup
SEE ALSO getnetgrent(3), exports(5), makedbm(8), ypserv(8)WARNINGS
The triple (,,domain) allows all users and machines trusted access, and has the same effect as the triple (,,). Use the host and user
fields of the triple to restrict the access correctly to a specific set of members.
AUTHOR
Thorsten Kukuk <kukuk@thkukuk.de>
NIS Reference Manual 04/06/2006 NETGROUP(5)
Check Out this Related Man Page
NETGROUP(5) BSD File Formats Manual NETGROUP(5)NAME
netgroup -- defines network groups
SYNOPSIS
netgroup
DESCRIPTION
The netgroup file specifies ``netgroups'', which are sets of (host, user, domain) tuples that are to be given similar network access.
Each line in the file consists of a netgroup name followed by a list of the members of the netgroup. Each member can be either the name of
another netgroup or a specification of a tuple as follows:
(host, user, domain)
where the host, user, and domain are character string names for the corresponding component. Any of the comma separated fields may be empty
to specify a ``wildcard'' value or may consist of the string ``-'' to specify ``no valid value''. The members of the list may be separated
by whitespace and/or commas; the ``'' character may be used at the end of a line to specify line continuation. The functions specified in
getnetgrent(3) should normally be used to access the netgroup database.
Lines that begin with a # are treated as comments.
FILES
/etc/netgroup the netgroup database.
SEE ALSO getnetgrent(3), exports(5)COMPATIBILITY
The file format is compatible with that of various vendors, however it appears that not all vendors use an identical format.
BUGS
The interpretation of access restrictions based on the member tuples of a netgroup is left up to the various network applications. Also, it
is not obvious how the domain specification applies to the BSD environment.
BSD December 11, 1993 BSD
Other than security does having a separate linux box
for the intranet server and a separate one for
intranet gateway effect the speed of the internet
connection.
We have our server and gateway on
40GB HD
256 MB RAM
1.5 GHz Intel P3
Can the server/gateway be configured for better speed?... (1 Reply)
Hi
I have a file containing hostnames like this
(host=myhost.domain.com) or
(host=myhost)
i need to extarct the unique hostnames without the domain names from that file.
so my output should be myhost (without domain names)
But my regex skills are rusty
i tried grep "host"... (4 Replies)
I have a new FreeBSD 7 web server that connects just fine from the INTERNET side. I'd like to be able to keep that connectivity and then have "authorized" users able to access and be served documents from the INTRANET side. My Firewall works so good, that when I connect from the INTERNET side,... (3 Replies)
Hi Guys,
I am working on the e25k server.
There is 4 domain configured
Once domain is down
So I tried to access the console for the problem domain.
using console -d B
but its showing following error message.
bash-2.05$ console -d B
Domain administration permissions... (3 Replies)
Hi there,
I am trying to set a ulimit max in the /etc/security/limits.conf against a NIS netgroup (which contains a whole bunch of users) instead of a local user or group.
so I have a NIS netgroup called +@myusers , none of whose users are defined locally on the box. I want to ensure that... (2 Replies)
Hello,
We are working on Client's remote server and accessing the same from putty from our office.
Now from last 1 month we are facing an issue of inaccessibility of servers from same gateway we configured on our Desktop.
However some machines are accessing the same remote server from same... (2 Replies)
I'm considering the merits of slightly redefining the "domain" field in a NIS netgroup (the third field in the triple) to make it more useful, in a new Internet Draft that I am currently developing. Does anyone out there who uses NIS actually make use of the "domain" field? The places I've worked... (8 Replies)
Hi, How to pull netgroup from all servers
I think the netgroup resides in /etc/security/access.conf so I want to know how to get the list of netgroup in all the servers.
I have a jump server I can run the script from there to get the list but not sure how to do the script. Any ideas or... (1 Reply)