On 17 May 2018 at 07:34, Florian Weimer <fweimer(a)redhat.com> wrote:
On 05/17/2018 01:54 AM, Ian Kent wrote:
>
> I think you'll find NIS is still quite widely used.
>
> NIS Plus was an attempt to improve NIS but (AFAIK) it never became widely
> used.
> LDAP is another attempt to provide much of the table information provided
> by NIS
> but it is far more complicated to administer.
>
> NIS remains the simplest and easiest way to centrally manage (key, value)
> stores
> such as password, group, netgroup, hosts etc. so it has endured.
On the other hand, LDAP can be run over TLS, so that people need to do a bit
more than manipulate networks to gain unauthorized access to systems.
I've also been told that people use NIS because it doesn't have a search
domain limit. But we removed that from Fedora 26 (in updates) and Red Hat
Enterprise Linux 7.5, so there should be one reason less to run NIS.
Most of the NIS I have run in has been set up and configured to be
that way since the late 1980's or 1990's. The original hardware may
only be in a museum, but it embedded itself in the site
administration, training, and scripts. If the site has any
ISO/ITIL/etc plans, NIS got implanted deeply into all of that
documentation which will require acts of God (aka computer center hit
by a meteorite) to remove. All of this makes the replacing of NIS a
political and social struggle versus a technical one.
That said, it doesn't mean an OS like Fedora can't put a "we aren't
looking to support NIS after Fedora 34" line in the sand. Whether the
tide of inevitability will come in and wash it away is another
question.
Thanks,
Florian
_______________________________________________
devel mailing list -- devel(a)lists.fedoraproject.org
To unsubscribe send an email to devel-leave(a)lists.fedoraproject.org
Fedora Code of Conduct:
https://getfedora.org/code-of-conduct.html
List Guidelines:
https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.o...
--
Stephen J Smoogen.