Re: Best Network setup for linux/unix

From: David L. Parsley (lkml account) (kparse@salem.k12.va.us)
Date: Fri Jan 07 2000 - 20:23:48 EST


On Fri, 7 Jan 2000, Alan Cox wrote:

> > I need some suggestions on setting up a unix server farm that all =
> > gets authenticated from a single server. What is the best way of doing =
> > this?
>
> Advice #1: Don't do it. Not for servers. Otherwise the failure of your
> authentication host leaves you dead in the water.
>
> > I know I could use NIS but is that really the best way to do it? The =
>
> NIS works, its not terribly secure. LDAP is more powerful but a bugger
> to set up

Yup, I think RedHat jumped the gun a tad with the phrase 'integrated LDAP'
- but I managed pam & nss ldap on the laptop (and now I'll implement at
the college). I agree a monolithic auth server is a single point of
failure and bad. Is there a nice way to do failover w/ LDAP? (I don't
remember anything from pam_ldap and nss_ldap) Heartbeating and such
would make it a _real_ bugger to set up.

David

>
> > problem we are having is that we are using two cobalts, one intel web =
> > server, and finally one intel mail server. I want a centralized =
>
> NIS works across OS's and across platforms. Well mostly anyway 8)
>
> Alan
>
> -
> To unsubscribe from this list: send the line "unsubscribe linux-net" in
> the body of a message to majordomo@vger.rutgers.edu
>

- --
David L. Parsley
Network Specialist
City of Salem Schools

-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to majordomo@vger.rutgers.edu



This archive was generated by hypermail 2b29 : Sat Jan 15 2000 - 21:00:28 EST