World Library  
Flag as Inappropriate
Email this Article

Network Information Service

Article Id: WHEBN0000216844
Reproduction Date:

Title: Network Information Service  
Author: World Heritage Encyclopedia
Language: English
Subject: Passwd, Sun Microsystems, Network File System, Diskless Remote Boot in Linux, YP
Collection: Directory Services, Inter-Process Communication, Network Management, Sun Microsystems Software, Unix Network-Related Software
Publisher: World Heritage Encyclopedia
Publication
Date:
 

Network Information Service

The Network Information Service, or NIS (originally called Yellow Pages or YP) is a client–server directory service protocol for distributing system configuration data such as user and host names between computers on a computer network. Sun Microsystems developed the NIS; the technology is licensed to virtually all other Unix vendors.

Because British Telecom PLC owned the name "Yellow Pages" as a registered trademark in the United Kingdom for its paper-based, commercial telephone directory, Sun changed the name of its system to NIS, though all the commands and functions still start with “yp”.

A NIS/YP system maintains and distributes a central directory of user and group information, hostnames, e-mail aliases and other text-based tables of information in a computer network. For example, in a common UNIX environment, the list of users for identification is placed in /etc/passwd, and secret authentication hashes in /etc/shadow. NIS adds another “global” user list which is used for identifying users on any client of the NIS domain.

Administrators have the ability to configure NIS to serve password data to outside processes to authenticate users using various versions of the Unix crypt(3) hash algorithms. However in such cases, any NIS client can retrieve the entire password database for offline inspection. Kerberos was designed to handle authentication in a more secure manner.

Contents

  • Successor technologies 1
  • See also 2
  • References 3
  • External links 4

Successor technologies

The original NIS design was seen to have inherent limitations, especially in the areas of scalability and security, so other technologies have come to replace it.

Sun introduced NIS+ as part of Solaris 2 in 1992, with the intention for it to eventually supersede NIS. NIS+ features much stronger security and authentication features, as well as a hierarchical design intended to provide greater scalability and flexibility. However, it was also more cumbersome to set up and administer, and was more difficult to integrate into an existing NIS environment than many existing users wished. NIS+ has been removed from Solaris 11.[1]

As a result, many users chose to stick with NIS, and over time other modern and secure distributed directory systems, most notably Lightweight Directory Access Protocol (LDAP), came to replace it. For example, slapd (the standalone LDAP daemon) generally runs as a non-root user, and SASL-based encryption of LDAP traffic is natively supported.

On large LANs, DNS servers may provide better nameserver functionality than NIS or LDAP can provide, leaving just site-wide identification information for NIS master and slave systems to serve. However, some functions—​such as the distribution of netmask information to clients, as well as the maintenance of e-mail aliases—​may still be performed by NIS or LDAP. NIS maintains an NFS database information file as well as so called maps.

See also

References

  1. ^ "End of Feature Notices for Oracle Solaris 11". 2012-12-20. 

External links

  • Thorsten Kukuk (2003-07-01). "The Linux NIS(YP)/NYS/NIS+ HOWTO".  
  • Van Emery (2005-04-15). "Distributed Authentication System (DAS) Handbook". 
  • Kristy Westphal (2001-01-22). "NFS and NIS Security".  
  • "Red Hat Enterprise Linux 6: 2.2.3. Securing NIS".  
  • Frédéric Raynal (2001-06-29). "Yellow Pages, part 1".  
  • Resources on how to replace NIS can be found at the NIS Migration Resource Site
This article was sourced from Creative Commons Attribution-ShareAlike License; additional terms may apply. World Heritage Encyclopedia content is assembled from numerous content providers, Open Access Publishing, and in compliance with The Fair Access to Science and Technology Research Act (FASTR), Wikimedia Foundation, Inc., Public Library of Science, The Encyclopedia of Life, Open Book Publishers (OBP), PubMed, U.S. National Library of Medicine, National Center for Biotechnology Information, U.S. National Library of Medicine, National Institutes of Health (NIH), U.S. Department of Health & Human Services, and USA.gov, which sources content from all federal, state, local, tribal, and territorial government publication portals (.gov, .mil, .edu). Funding for USA.gov and content contributors is made possible from the U.S. Congress, E-Government Act of 2002.
 
Crowd sourced content that is contributed to World Heritage Encyclopedia is peer reviewed and edited by our editorial staff to ensure quality scholarly research articles.
 
By using this site, you agree to the Terms of Use and Privacy Policy. World Heritage Encyclopedia™ is a registered trademark of the World Public Library Association, a non-profit organization.
 


Copyright © World Library Foundation. All rights reserved. eBooks from Project Gutenberg are sponsored by the World Library Foundation,
a 501c(4) Member's Support Non-Profit Organization, and is NOT affiliated with any governmental agency or department.