Network Information service (formerly YP) is a means of distributing information to a group of machines. The NIS master holds the information tables and converts them into NIS map files. These maps are then served over the network, allowing NIS client machines to get login, password, home directory and shell information (all the information in a standard /etc/passwd file). This allows users to change their password once and have it take effect on all the machines in the NIS domain.
NIS is not at all secure. It was never meant to be. It was meant to be handy and useful. Anyone that can guess the name of your NIS domain (anywhere on the net) can get a copy of your passwd file, and use "crack" and "John the Ripper" against your users' passwords. Also, it is possible to spoof NIS and do all sorts of nasty tricks. If you must use NIS, make sure you are aware of the dangers.
Network security is a complicated subject, historically only tackled by well-trained and experienced experts. However, as more and more people become ``wired'', an increasing number of people need to understand the basics of security in a networked world. This document was written with the basic computer user and information systems manager in mind, explaining the concepts needed to read through the hype in the marketplace and understand risks and how to deal with them.
Some history of networking is included, as well as an introduction to TCP/IP and internetworking . We go on to consider risk management, network threats, firewalls, and more special-purpose secure networking devices.
This is not intended to be a ``frequently asked questions'' reference, nor is it a ``hands-on'' document describing how to accomplish specific functionality.
It is hoped that the reader will have a wider perspective on security in general, and better understand how to reduce and manage risk personally, at home, and in the workplace.
Network security is becoming more and more important as people spend more and more time connected. Compromising network security is often much easier than compromising physical or local security, and is much more common.
There are a number of good tools to assist with network security, and more and more of them are shipping with Linux distributions.
The new look Network Security is devoted to solving your network security problems in system-specific detail, now with even more news, information and solutions to your network security problems.
Subscribe today and identify the threats to your networks immediately!
Every month Network Security covers:
• Worldwide news - the latest in LAN/WAN vulnerabilities and solutions, virus detection and data recovery, international developments, recent company mergers to reinforce network security solutions
• Regular industry columns - the inside view from our board of experts
• Authoritative news and analysis on the major networks and their operations and the impact on your organization
• In-depth technical feature articles - practical advice and guidance on key management concerns plus critical evaluations of technical issues and industry trends
• Regular case studies, legal brief and Cybernet features, highlights from recent conferences, book reviews and a comprehensive calendar of events
Network Security provides vital information for:
• Network and Telecommunications Managers
• Planners
• Analysts and Operations Managers
• Computer and Information Security Managers
• Systems Administrators
• IS Management
• Manufacturers, suppliers, and resellers of networking hardware and software
• Technical Planning Management for Carriers
