Mail Archives: cygwin/2002/12/06/09:36:05

delorie.com/archives/browse.cgi

search

Mail Archives: cygwin/2002/12/06/09:36:05

Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm

List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>

List-Archive: <http://sources.redhat.com/ml/cygwin/>

List-Post: <mailto:cygwin AT cygwin DOT com>

List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sources.redhat.com/ml/#faqs>

Sender: cygwin-owner AT cygwin DOT com

Mail-Followup-To: cygwin AT cygwin DOT com

Delivered-To: mailing list cygwin AT cygwin DOT com

Message-Id: <4.3.2.7.2.20021206092618.017d0130@goblet.cisco.com>

X-Sender: brosler AT goblet DOT cisco DOT com

Date: Fri, 06 Dec 2002 09:35:24 -0500

To: Vince Hoffman <Vince DOT Hoffman AT uk DOT circle DOT com>

From: "Bruce P. Osler" <brosler AT cisco DOT com>

Subject: RE: Is it possible to use centralized passwords with cygwin

inetd ?

Cc: "'Bruce P. Osler'" <brosler AT cisco DOT com>, cygwin AT cygwin DOT com

In-Reply-To: <3500515B75D9D311948800508BA379559509C4@EX-LONDON>

Mime-Version: 1.0

I guess I was looking for something a bit more dynamic.  I understand
that I can create entries on my local machine which contain the domain
users password.  The issue for me is one of centralization.  Is there
a way I can bypass the local /etc/passwd file in order that cygwin
directly queries the network resource.  To do this I would imagine an
exchange similar to the following would have to be seen:

brosler AT WHEREVER-NT ~
$ telnet brosler-nt
Trying 172.27.57.214...
Connected to brosler-nt.foobar.com.
Escape character is '^]'.

CYGWIN_NT-4.0 1.3.15(0.63/3/2) (brosler-nt) (tty0)

login: FOOBAR_ENG\brosler
password:

brosler-nt AT BROSLER-nt ~
$

In this instance the /etc/passwd file would NOT contain an entry for
this specific user, but rather it would contain an entry for something
like "U-FOOBAR_ENG\everyone" or some such thing which would cause the
passwd agent to direct the query to the network instead of at the local
passwd file.

I mean, inside cisco there's something on the order of 40000 employees.
In my imediate group there's over 400.  The idea that all of them are
never going to change their password is ludicrous as well as the nature
of having to pull down 400 passwords on a periodic basis (NT reboots are
not an unknown :-)  As all this password stuff is already accounted for
on a network server somewhere in the ether, why not take advantage of it.

- Bruce

At 10:41 AM 12/6/2002 +0000, Vince Hoffman wrote:
>Cygwin fully supports domain users. just run `mkpasswd -d <domain name> >>
>/etc/passwd` on each box.
>(setup may run this automaticly these days i'm not sure so check if you
>already have a list of domain users in your passwd file.)
>
>
> > -----Original Message-----
> > From: Bruce P. Osler [mailto:brosler AT cisco DOT com]
> > Sent: 05 December 2002 22:04
> > To: cygwin AT cygwin DOT com
> > Cc: Bruce Osler
> > Subject: Is it possible to use centralized passwords with
> > cygwin inetd?
> >
> >
> > For starters - I'd like to contribute to the Cygwin love-fest going
> > on.  I think Cygwin is an awesome environment with huge benefits
> > for folks working under windows.
> >
> > Today I'm interested in finding out wether I can use networked
> > password services with the cygwin inetd.  At work I would like to
> > setup a series of computers with Cygwin tools all of which are
> > running the Cygwin inetd.  As there are a couple of hundred engineers
> > in this environment the option of maintaining multiple /etc/passwd
> > files is a bit onerous (if not unreasonable).  All of these computers
> > are already hooked into an environment where the user passwords are
> > provided and managed centrally to an NT domain.  Is there any way
> > I can have Cygwin/inetd use the central domain password service
> > for authentication?
> >
> > - Bruce
> >
> >
> > --
> > Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
> > Bug reporting:         http://cygwin.com/bugs.html
> > Documentation:         http://cygwin.com/docs.html
> > FAQ:                   http://cygwin.com/faq/
> >
>
>--
>Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
>Bug reporting:         http://cygwin.com/bugs.html
>Documentation:         http://cygwin.com/docs.html
>FAQ:                   http://cygwin.com/faq/

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

- Raw text -

webmaster	delorie software privacy
Copyright © 2019 by DJ Delorie	Updated Jul 2019

Mailing-List:	contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Subscribe:	<mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive:	<http://sources.redhat.com/ml/cygwin/>
List-Post:	<mailto:cygwin AT cygwin DOT com>
List-Help:	<mailto:cygwin-help AT cygwin DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender:	cygwin-owner AT cygwin DOT com
Mail-Followup-To:	cygwin AT cygwin DOT com
Delivered-To:	mailing list cygwin AT cygwin DOT com
Message-Id:	<4.3.2.7.2.20021206092618.017d0130@goblet.cisco.com>
X-Sender:	brosler AT goblet DOT cisco DOT com
Date:	Fri, 06 Dec 2002 09:35:24 -0500
To:	Vince Hoffman <Vince DOT Hoffman AT uk DOT circle DOT com>
From:	"Bruce P. Osler" <brosler AT cisco DOT com>
Subject:	RE: Is it possible to use centralized passwords with cygwin
	inetd ?
Cc:	"'Bruce P. Osler'" <brosler AT cisco DOT com>, cygwin AT cygwin DOT com
In-Reply-To:	<3500515B75D9D311948800508BA379559509C4@EX-LONDON>
Mime-Version:	1.0