From mboxrd@z Thu Jan  1 00:00:00 1970
From: "Adrian C." <office@snobu.org>
Subject: Re: Password File Sync Script
Date: Tue, 20 Jun 2006 00:40:53 +0300
Message-ID: <449719E5.5000403@snobu.org>
References: <fe077a3b0606191344g1a6f0909i270aba471bbea494@mail.gmail.com>	 <1524.24.67.32.39.1150750756.squirrel@dctchambers.com> <fe077a3b0606191436n254ba996g5c4bfdd5f9090622@mail.gmail.com>
Mime-Version: 1.0
Content-Transfer-Encoding: 7bit
Return-path: <linux-admin-owner@vger.kernel.org>
In-Reply-To: <fe077a3b0606191436n254ba996g5c4bfdd5f9090622@mail.gmail.com>
Sender: linux-admin-owner@vger.kernel.org
List-Id: <linux-admin.vger.kernel.org>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
To: Sashikanth Madduri <mail.to.sashi@gmail.com>, 'Linux Mail List' <linux-admin@vger.kernel.org>

Sashikanth Madduri wrote:
> I am not using NIS because, it is insecure and password information is
> passed over the network unencrypted.
> 
> So, I am thinking of copying the password files in an ssh tunnel(using 
> scp).
> 
> Is NIS really insecure?
> What is the best way to manage user accounts in a network if security
> is a concern?


Kerberos/OpenLDAP would be a good start.

--Adrian.