Hi,
In the past I've setup simple centralized authentication with NIS and
NFS, without bothering about possible security implications.
Over the next month I have to setup a new network in a local school, and
I wonder if I should use NIS/NFS. I still have my own documentation,
it's simple and some
> Over the next month I have to setup a new network in a local school, and
> I wonder if I should use NIS/NFS. I still have my own documentation,
> it's simple and somewhat bone-headed to setup, and it just works.
In my opionion, there is a serious gap in this area. It's either NIS, simple,
eas
On Mon, Mar 26, 2018 at 9:07 PM, Nicolas Kovacs wrote:
> Hi,
>
> In the past I've setup simple centralized authentication with NIS and
> NFS, without bothering about possible security implications.
>
> Over the next month I have to setup a new network in a local school, and
> I wonder if I should
Am 2018-03-26 10:28, schrieb isdtor:
Over the next month I have to setup a new network in a local school,
and
I wonder if I should use NIS/NFS. I still have my own documentation,
it's simple and somewhat bone-headed to setup, and it just works.
In my opionion, there is a serious gap in this ar
Am 2018-03-26 10:46, schrieb Clint Dilks:
Hi, as you why it is insecure the biggest reason is that it is trivial
for
a user to get sensitive information about other users. Particularly
things
like password hashes, and with the compute power available today
cracking a
hash is not impractical.
> You don't even need to crack them yourself.
> If you have the hashes, you can just use rainbow-tables available online,
> sometimes for a small fee.
There are salted hashes for that ...
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.
Le 26/03/2018 à 10:28, isdtor a écrit :
> There's also the option of using AD if such infrastructure exists.
There are no Windows clients in the network, only CentOS 7.
--
Microlinux - Solutions informatiques durables
7, place de l'église - 30730 Montpezat
Site : https://www.microlinux.fr
Blog :
Le 26/03/2018 à 10:28, isdtor a écrit :
> In my opionion, there is a serious gap in this area. It's either NIS,
> simple, easy to setup yet insecure, or LDAP/FreeIPA/RH Id management
> server at a complexity at least one order of magnitude beyond NIS.
I gave FreeIPA a spin a while back. I installe
I try to setup a PPTP VPN server on Centos 7 and from client a router
Vodafone Station (Firmware 5.4.8.1.316.1.21)
On c7 I have install this:
[root@s-virt tmp]# rpm -q pptpd ptpd-1.4.0-2.el7.x86_64ppp-2.4.5-
33.el7.x86_64
and setup all file and firewall like howto say.This now is my config:
/et
> Am 26.03.2018 um 11:59 schrieb Nicolas Kovacs :
>
> Le 26/03/2018 à 10:28, isdtor a écrit :
>> In my opionion, there is a serious gap in this area. It's either NIS,
>> simple, easy to setup yet insecure, or LDAP/FreeIPA/RH Id management
>> server at a complexity at least one order of magnitude
I also looked into FreeIPA and the complexity is significant, at the time
FreeIPA's DNS integration seemed to rely on a Fedora patch and I wasn't willing
to introduce that into a production environment. Does anyone know if this has
changed? Also, concerning alternatives, does anyone have exper
I have also try to use this VPN connection from my Fedora Workstation
and all work fine, seem a problem of router Vodafone Station.
This is a ping from server to V.S. when the V.S. is connected:
[root@s-virt tmp]# ping 192.168.11.100
PING 192.168.11.100 (192.168.11.100) 56(84) bytes of data.
64 b
On 03/26/2018 02:59 AM, Nicolas Kovacs wrote:
I gave FreeIPA a spin a while back. I installed it on a sandbox server,
and from what I recall, it pulled in a tsunami of dependencies, and
first thing it wanted to replace my Dnsmasq with BIND... so I didn't
look much further.
FreeIPA should be in
On 03/26/2018 04:03 AM, Dario Lesca wrote:
I try to setup a PPTP VPN server on Centos 7
If you have ANY other option, do not use PPTP. If your client router
supports IPSec, it will be vastly more secure.
PPTP's encryption handshake uses a key derived from the password. It is
extremely we
On 26/03/2018 15:14, Gordon Messmer wrote:
> FreeIPA takes all of one command to install, and one to set up. It
> provides a web UI for both administrative and end-user management of
> users, passwords, login and sudo policy, etc. Anything you find overly
> complex can simply be unused.
FreeIPA is
> Am 26.03.2018 um 16:31 schrieb Tom Grace :
>
> On 26/03/2018 15:14, Gordon Messmer wrote:
>> FreeIPA takes all of one command to install, and one to set up. It
>> provides a web UI for both administrative and end-user management of
>> users, passwords, login and sudo policy, etc. Anything you f
On 26/03/2018 16:18, Leon Fauster wrote:
> Time synchronization for all nodes is crucial for kerberos ...
In my case, somehow Bind lost the required kerberos tokens to be able to
talk to the LDAP server on the same host, so DNS didn't work, so it
couldn't attempt to refresh the token. Never worked
17 matches
Mail list logo
