administration isilon it linux linux-nis networking nis solaris sysadmin to_try unix unix-family user-management

My tags:

From Wikipedia, the free encyclopedia

The Network Information Service or NIS (originally called Yellow Pages or YP) consists of a client-server directory service protocol for distributing system configuration data such as user and host names between computers on a computer network. Sun Microsystems developed the NIS and licenses this technology to virtually all other Unix vendors.

Because British Telecom PLC owned the name "Yellow Pages" as a registered trademark in the United Kingdom for its (paper-based) commercial telephone directory, Sun changed the name of its system to NIS, though all the commands and functions still start with “yp”.

An NIS/YP system maintains and distributes a central directory of user and group information, hostnames, e-mail aliases and other text-based tables of information in a computer network. For example, in a common UNIX environment, the list of users for identification is placed in /etc/passwd, and secret authentication hashes in /etc/shadow. NIS adds another “global” user list which is used for identifying users on any client of the NIS domain.

Administrators have the ability to configure NIS to serve password data used to authenticate users against as well; however, not only is this cumbersome to do without resorting to DES encrypted passwords (which are known to be weak) if multiple OSs are in use, it also allows any NIS client to retrieve the whole password database for offline inspection. Kerberos was designed to handle authentication in a more secure manner.

In many environments other directory services — arguably more modern and secure than NIS, such as LDAP — have come to replace it. For example, slapd (the standalone LDAP daemon) generally runs as a non-root user, and SASL-based encryption of LDAP traffic is natively supported.

On large LANs, DNS servers may provide better nameserver functionality than NIS or LDAP can provide, leaving just site-wide identification information for NIS master and slave systems to serve. However, some functions — such as the distribution of netmask information to clients, as well as the maintenance of e-mail aliases — may still be performed by NIS or LDAP.

[edit] See also

• NIS+

[edit] External links

• The NIS-HOWTO from the Linux Documentation Project
• Distributed Authentication System (DAS) Handbook by Van Emery
• NFS and NIS Security by Kristy Westphal - Securityfocus article Jan. 22, 2001
• Red Hat Linux 9: Red Hat Linux Security Guide - 5.3. Securing NIS
• Linux Focus: Yellow Pages - Includes some details on the underlying RPC calls

v • d • e Sun Microsystems Hardware Sun-1 · Sun-2 · Sun-3 · Sun386i · Sun-4 · SPARCstation · Netra · Ultra · Enterprise · Sun Blade · Sun Fire · SPARC Enterprise · SPARC · JavaStation · Sun Ray · Sun Modular Datacenter · more... Software SunOS · Solaris · NIS · NFS · ZFS · SunView · NeWS · OpenWindows · Java Desktop System · Sun Studio · Java · StarOffice · iPlanet/Sun ONE/Java Enterprise System · Sun Secure Global Desktop · MySQL · Sun xVM · more... Storage StorageTek · Sun Open Storage · QFS · ZFS High-Performance Computing Sun Constellation System · Sun Visualization System · Sun Grid Engine · Lustre Research Sun Labs · picoJava  · Fortress · Project Looking Glass Education and Recognition SCPs · List of notable employees · BlueJ Community CDDL · Java Community Process · OpenOffice.org · OpenSolaris · OpenSPARC · OpenJDK · OSUM