| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
|
|
|
|
| |
instead of its own kludged up version. This makes the special 'superuser-only'
update procedure work just like a real RPC service.
|
|
|
|
| |
posix standard on the topic.
|
| |
|
|
|
|
|
|
|
|
| |
This will make a number of things easier in the future, as well as (finally!)
avoiding the Id-smashing problem which has plagued developers for so long.
Boy, I'm glad we're not using sup anymore. This update would have been
insane otherwise.
|
| |
|
| |
|
|
|
|
|
|
|
| |
but never made it here for some reason:
- 'u' option was missing from getopt string
- Use daemon() to become daemonic.
|
|
|
|
| |
have been there. Fixed to use yp_dir, which can be set on the command line.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
If rpc.yppasswdd is invoked with the -i flag, password changes will
be made to the master.passwd template file and the hash map files
in-place, which means it won't have to run a complete map update.
Instead, it calls /var/yp/Makefile with the 'pushpw' target, which
just pushes the maps to the slaves and runs yp_mkdb -c to tell the
local ypserv to flush its database cache.
The server will check the passwd.byname and passwd.byuid maps to see
if they were built in 'insecure' or 'secure' mode (i.e. with real
encrypted passwords in them or without) and update them accordingly.
This combined with rpc.ypxfrd greatly reduces the amount of time it
takes to complete an NIS password change, especially with very large
passwd databases.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
also controlled by /var/yp/securenets).
Add -u flag to turn off the privileged port check done by yp_access();
some commercial systems (IRIX, Solaris 2.x, HP-UX, and probably others)
don't use a reserved port for submitting yppasswd updates. If we always
enforce the check, these client systems will be unable to submit updates
to us.
Document securenets support and -u flag in man page.
Like ypserv, you can compile rpc.yppasswdd to use the tcpwrapper package
instead of securenets if you want to.
|
|
which included commits to RCS files with non-trunk default branches.
|