Talk:HOWTO Setup NIS
From Gentoo Linux Wiki
Contents |
[edit] Abnormal Activity
When I change the lines:
passwd: compat shadow: compat group: compat
to
passwd: compat nis shadow: compat nis group: compat nis
As described by this howto, it seems to open logins to my box from all users on my nis server, how do I limit the access for example to just one group on the nis server?
[edit] Limit NIS to netgroup
Yeah, adding nis allows all nis users. To limit it to one group leave them as compat. Then on the clients /etc/passwd at +@yourgroup.
yourgroup is a netgroup, not a regular group. You need to add it in /etc/netgroup like: yourgroup (,someuser,yournisdomain) (,otheruser,yournisdomain)
[edit] Horridly Out-Dated Document???
Version ypbind-3.3?
Note for me: Does this document describe installing two completely different NIS servers within the same sub-section? If so, separate them for article clarity?
This wiki makes little mention of "If you don't want to generate ... under /etc ..." , is merrily copy/pasted from the actual Makefile itself and just re-worded. This variable would also be better defined instead as YPSRCDIR = $(YPDIR)/ypfiles -- incase the $YPDIR base folder is ever changed to a diff location!
I'm also seeing a hard-coded folder name w/i the Makefile
- ALIASES = $(YPSRCDIR)/aliases # aliases could be in /etc or /etc/mail
ALIASES = /etc/mail/aliases
(The above are just some odds & ends notes I made early to describe how awful following the wiki was. They will or can be deleted later or now. Below are my explanations for the changes to the Server section of this wiki.)
I've made some notes here, and updated the Server Install, Configure & Start section. What was there before, got me nothing but headaches. Parts were just obviously copy/pasted from the man files or howto and still made no sense. I can say the Server section is more clear now, and I now have the server running using a basic configuration using the added notes to this Wiki. It is by no means, a master piece.. .yet. The instructions at least work now. More advanced scenarios need to be added. (Personally, I would have only mentioned the advanced scenarios without providing in-depth info, as a little info complicates things more so, then clarifying.) Putting all references to $YPSRCDIR/$YPPWDDIR, should be placed here within TALK and then when an expert comes along, they can clarify it properly within the wiki page. --Roger 23:17, 3 October 2008 (UTC)
[edit] Makefile breaks after changing $YPPWDDIR Variable!
Cr*P! I'm also getting Makefile errors when changing the following w/i the Makefile:
file: /var/yp/Makefile
- YPPWDDIR = /etc
YPPWDDIR = /var/yp/ypfiles
gmake[1]: *** No rule to make target `/var/yp/ypfiles/passwd', needed by `passwd.byname'. Stop.
Makefile is also generating a (none) folder and putting everything in it, instead of using /var/yp/ypfiles! (This seems to denote the DOMAIN is not set.) <arg!!!> Umm.. duh. Dum wiki forgot to mention to restart the network if you add your yp $domain to the /etc/conf.d/net!! Ok. Think I found the error and made note of it within the wiki page. Appears YPPWDDIR is used for including /etc files and building against those files. If they are not already present within the stated changed YPPWDDIR variables folder, then the Makefile will break. Untested, but I'm pretty darn sure it's the cause of this problem.
I've made a note of this within the Server section. I also feel mentioning changing such variables should be avoided within the wiki page entirely until somebody can clearly document step-by-step what needs to be done. But from what I'm seeing, it's not needed for a basic install of YP NIS and only will lead to further confusion if it suggests to change the variable w/o step by steup instructions.
