Solved

NIS vs NIS+

Posted on 1997-05-22
1
467 Views
Last Modified: 2013-12-23
I am concerned with the security between NIS and NIS+ or (NYS).  I would like to know the specifics of what NIS+ was able to accomplish and why was it needed in the first place.  The more specific the better; i.e. why are tables more secure than maps?  
0
Comment
Question by:aaronc
1 Comment
 
LVL 5

Accepted Solution

by:
n0thing earned 200 total points
ID: 1582089
Hi,

Here's a little description. It is however far from complete and
way too long to be well explained here.

A major change between NIS and NIS+ is the extensive security built around NIS+. By default, it uses Secure RPC, with data encryption standards (DES) encryption and Diffie-Hellmann key exchange for authentication. And it does extensive authorization checks before allowing any NIS+ operation. This procedure      ensures that when NIS+ is set up and used as recommended, it is a secure environment.

The use of table instead of maps gives you more control over who
can/can't access specific data. You could grant access per table, per column within the table, which you cannot do with maps and thus more secure. Another reason is the transfer of information
between NIS server/zones. Only needed data are to be sent, new
table, column instead of the whole map.

Hope it clears up some of your concerns. For more information,
please buy the book NIS from O'reilly, one of the best book on
the topic.

Regards,
n0thing

0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Even if you have implemented a Mobile Device Management solution company wide, it is a good idea to make sure you are taking into account all of the major risks to your electronic protected health information (ePHI).
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now