NIS Development

Andrew Perrin - Demography aperrin at demog.Berkeley.EDU
Mon Jan 25 21:11:28 GMT 1999 

Oops, sorry folks - http://demog.berkeley.edu/~aperrin/tips/mchp.html


On Mon, 25 Jan 1999, Eric W. Fisher wrote:

> Out of curiousity, are you aware, that the page seems to be missing.
> Don't mean to be a pest, just really interested in the page.
> 
> -Eric
> 
> 
> ***********************************************************************
> Eric W. Fisher                          e-mail: fisher at knarf.com
> phone:  (408) 564-2097                          efisher at taos.com
> www:    http://www.knarf.com/		pager:  fisher.epage at knarf.com
>                                            or   http://pcs.knarf.com/
> ***********************************************************************
> 
> On Tue, 26 Jan 1999, Andrew Perrin - Demography wrote:
> 
> > Scott,
> > 
> > I developed a system to do (sort of) what you're looking for at our site;
> > it's at http://demog.berkeley.edu/~aperrin/mchp.html (mchp stands for
> > meta-change password).  In addition, it enforces a separate, mail-only
> > password for our users so they can read mail from non-secure connections.
> > Let me know if it's helpful, at least as a starting point.
> > 
> > Best,
> > Andy Perrin
> > 
> > On Tue, 26 Jan 1999, Scott Ruffner wrote:
> > 
> > > Hello All,
> > > 
> > > A while back there were a few messages on the list about NIS-Samba
> > > related development.  I'm interested in getting involved in this, or
> > > getting some suggestions if somebody's already come up with a solution.
> > > 
> > > My goal is to get our unix and NT password databases at least consistent
> > > (if not consolidated), without user intervention (ie, without users
> > > remembering to change their passwords on both systems). I'd like to set
> > > up all of our Samba Servers as Domain Controllers, and shut off the NT
> > > servers.  I'd planned on making our NIS master the PDC as well, which
> > > would have solved the problem by using one passwd file.  However, we
> > > also use encrypted passwords now, and that sticks me with two files.  
> > > 
> > > I'm not terribly worried about NT users, since smbpasswd on the PDC will
> > > also take care of modifying /etc/passwd, and I expect it's no big deal
> > > to replace smbpasswd with a little shell wrapper to also push the new
> > > passwd map.  However, going the other way does not appear to be so
> > > simple.  It seems that ideally one would want to modify the yppasswdd so
> > > that it also updates smbpasswd, and in the event samba users aren't
> > > running NTDOM, pushes the new smbpasswd map.  
> > > 
> > > I'd love to do a little hacking on this, but I don't know if there's
> > > already something out there, or an existing development branch for
> > > this.  If nobody's working on this, then any suggestions, wisdom, input,
> > > etc. would be most welcome; especially if I'm a knucklehead and missing
> > > a really obvious and easy way of doing this.
> > > 
> > > Scott
> > > 
> > > -- 
> > > Scott Ruffner                   Computer Science Department	
> > > Systems Engineer                226E Olsson Hall
> > > ruffner at cs.virginia.edu         University of Virginia
> > > (804)982-2219
> > > 
> > 
>

More information about the samba-ntdom mailing list