[src/trunk]: src/share/man/man8 Add a note on enabling "secure" maps.

[hubertf <hubertf%NetBSD.org@localhost>]

details:   https://anonhg.NetBSD.org/src/rev/b6bd1ea8bdbd
branches:  trunk
changeset: 503543:b6bd1ea8bdbd
user:      hubertf <hubertf%NetBSD.org@localhost>
date:      Thu Feb 08 13:40:53 2001 +0000

description:
Add a note on enabling "secure" maps.
Suggested by bdc%world.std.com@localhost in PR 12149

diffstat:

 share/man/man8/yp.8 |  17 +++++++++++++++--
 1 files changed, 15 insertions(+), 2 deletions(-)

diffs (45 lines):

diff -r 81f7a7fab6d2 -r b6bd1ea8bdbd share/man/man8/yp.8
--- a/share/man/man8/yp.8       Thu Feb 08 13:24:05 2001 +0000
+++ b/share/man/man8/yp.8       Thu Feb 08 13:40:53 2001 +0000
@@ -1,4 +1,4 @@
-.\"    $NetBSD: yp.8,v 1.15 1999/12/07 23:53:48 soren Exp $
+.\"    $NetBSD: yp.8,v 1.16 2001/02/08 13:40:53 hubertf Exp $
 .\"
 .\" Copyright (c) 1992/3 Theo de Raadt <deraadt%fsa.ca@localhost>
 .\" All rights reserved.
@@ -28,7 +28,7 @@
 .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 .\" SUCH DAMAGE.
 .\"
-.Dd January 16, 1999
+.Dd February 8, 2001
 .Dt YP 8
 .Os
 .Sh NAME
@@ -126,6 +126,14 @@
 .Tn NIS
 maps.
 .Pp
+Password maps in standard YP are insecure, because the pw_passwd
+field is accessable by any user. A common solution to this is to
+generate a secure map (using
+.Dq makedbm -s )
+which can only be accessed by a client bound to a privileged port.
+To activate the secure map, see the appropriate comment in
+.Pa /var/yp/Makefile.yp .
+.Pp
 The
 .Tn NIS 
 subsystem is conditionally started in
@@ -138,6 +146,11 @@
 .Xr ypbind
 cannot find a server, the system behaves the same way as Sun's code:
 it hangs.
+.Pp
+The 
+.Sq secure map
+feature is not compatible with non-BSD implementations as found
+e.g. in Solaris.
 .Sh SEE ALSO
 .Xr domainname 1 ,
 .Xr ypcat 1 ,