[BBLISA] Pros and cons of NIS

[Sean Lutner]

NIS has been end of lifed by Sun and by the end of this year or next  
year they won't support it anymore. In my experience, NIS is hard to  
make very secure (by default it is very insecure), fails for  
seemingly no reason and is a pain to fix, there are too many system  
services needed to run NIS.

If you want a better central naming service/authentication system,  
I'd recommend deploying an LDAP directory service. There are easy to  
use tools out there to accomplish NIS to LDAP migrations and LDAP can  
be made very secure through the use of SSL and client configuration  
is very easy.

I do a lot of directory service work for various companies and it's  
been my experience that LDAP is the way to go.

Sean

On Oct 3, 2006, at 11:59 AM, Mohan Ramanujan wrote:

> During a recent network filer upgrade we ran into issue where our  
> NIS service would not work.  We eventually fixed it, but that lead  
> to a discussion on whether we should use something better than NIS.
>
> We would like to get your opinion on merits and demerits of NIS  
> from any experience and knowledge you may have.  Thank you.
>
> --
> Mohan Ramanujan
> NBER
>
> _______________________________________________
> bblisa mailing list
> bblisa at bblisa.org
> http://www.bblisa.org/mailman/listinfo/bblisa

--
"Laws alone can not secure freedom of expression; in order that every  
man present his views without penalty there must be spirit of  
tolerance in the entire population." --Albert Einstein