Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

ypserv(8) [netbsd man page]

YPSERV(8)						    BSD System Manager's Manual 						 YPSERV(8)

NAME

     ypserv -- NIS server daemon

SYNOPSIS

     ypserv [-dfl] [-p port]

DESCRIPTION

     ypserv is a fundamental part of the network information system called NIS.  This server provides information from NIS maps to the NIS clients
     on the network.

     A NIS map is stored on the server as a db(3) database.  A number of NIS maps is grouped together in a domain.  ypserv determines the domains
     it serves by looking for a directory with the domain name in /var/yp.

     In an effort to improve the security of NIS (which has, historically, not been very good), this ypserv has support for libwrap-based access
     control.  See hosts_access(5) for more information.  The daemon used for access control is the name which ypserv was invoked as (typically
     ``ypserv'').  If a host is not allowed to query this NIS server, ypserv will return the NIS result code YP_NODOM.	To avoid problems with DNS
     lookups causing ypserv to hang, ypserv disables DNS lookups for its client hosts_access(5) lists.	The result is that ypserv can only use
     address based patterns.  This also means that wildcard patterns such as LOCAL or KNOWN will not work.

     The process pid of the ypserv process can be found in the file /var/run/ypserv.pid.

     The options are as follows:

     -d      Use internet Domain Name System.  If a query to map hosts.byname or hosts.byaddr fails, make a DNS query and return the result if
	     successful.

     -f      Run in the foreground.

     -l      Enable logging of all requests.

     -p port
	     Bind to the specified port instead of dynamically allocating one.

     All messages are sent to the system log with the facility LOG_DAEMON.  Error messages have the priority LOG_ERR.  Refused requests are logged
     with the priority LOG_WARNING.  All other messages are logged with the priority LOG_INFO.

FILES

     /var/run/ypserv.pid

SEE ALSO

     syslog(3), hosts_access(5), nis(8), syslogd(8), ypbind(8), ypinit(8)

AUTHORS

     This implementation of ypserv was originally written by Mats O Jansson <moj@stacken.kth.se>.  The access control code was later re-written
     from scratch by
     Jason R. Thorpe <thorpej@NetBSD.org>.

BSD
								   May 20, 2006 							       BSD

Check Out this Related Man Page

YPSERV(8)						    BSD System Manager's Manual 						 YPSERV(8)

NAME

     ypserv -- YP server daemon

SYNOPSIS

     ypserv [-1] [-a aclfile] [-d] [-x]

DESCRIPTION

     Ypserv is a fundamental part of the network information system called YP.	This server provides information from YP maps to the YP clients on
     the network.

     A YP map is stored on the server as a db(3) database. A number of YP maps is grouped together in a domain.  Ypserv determines the domains it
     serves by looking for a directory with the domain name in /var/yp.

     YP hasn't been known for high security through the years. In recent years security has improved by restricting access to the server. In SunOS
     4.1 has a new file occured named /var/yp/securenet.  It contains networks the server can assume is secure. For information about file format
     see securenet(5).

     Before the author of this server had seen securenet(5) another format was implemented ypserv.acl(5).  This file format makes it possible to
     allow and deny hosts and networks access to the server. This file can have any name since it's given by the argument to -a (use full path).

     The file used can be reread by sending a SIGHUP to ypserv. The process pid can be found in the file /var/run/ypserv.pid

     If a host isn't secure all queries to the server will result in a YP_NODOM result.

     If the file /var/yp/ypserv.log exists then messages will be written to the file.

     If a directory named the same as the system domainname exists in /var/yp/ (ie. the domainname is foo and directory /var/yp/foo exists), then
     ypserv will be automatically started at boot time.

     The options are as follows:

     -1      Allow ypserv to answer old YP version 1 requests.

     -a aclfile
	     Don't use /var/yp/securenet.  Use another file with another file format. For futher information see man page for ypserv.acl.

     -d      Use Internet Domain Name System. If a query to map hosts.byname or hosts.byaddr fails, make a DNS query and return the result if suc-
	     cessful.  Alternately, if these maps were built on the YP master using makedbm -b then DNS queries will be done without needing to
	     specify -d.

     -x      Terminate the server after processing aclfile or /var/yp/securenet.

FILES

     /var/yp/ypserv.log
     /var/yp/securenet
     /var/run/ypserv.pid

SEE ALSO

     yp(8), ypserv.acl(5), securenet(5), ypbind(1)

AUTHOR

     Mats O Jansson <moj@stacken.kth.se>

BSD
								   June 27, 1994							       BSD
Man Page