10 - System Management
11. If you wish to allow users to change their passwords from client machines, then you must enable 
yppasswdd(8)
: 
echo 'yppasswdd_flags="-d /etc/yp/src/puffynet"' >> /etc/
rc.conf.local
rpc.yppasswdd
In case you left the source directory at the default 
/etc
, just use 
yppasswdd_flags=""
. 
12. Remember that each time you change a file sourced by a YP map, you must regenerate your YP 
maps. 
cd /var/yp
make
This updates all database files in 
/var/yp/`domainname`
, with one exception: The file 
ypservers.db
, listing all YP master and slave servers associated with the domain, is created 
directly from 
ypinit -m
and modified exclusively by 
ypinit -u
. In case you accidentally 
delete it, run 
ypinit -u
to recreate it from scratch. 
10.19.4 - Setting up a YP client
Setting up a YP client involves two distinct parts. First, you must get the YP client daemon running, 
binding your client host to a YP server. Completing the following steps will allow you to retrieve data 
from the YP server, but that data will not yet be used by the system: 
1. Like on the server, you must set the domain name and enable the portmapper: 
echo "puffynet" > /etc/defaultdomain
domainname `cat /etc/defaultdomain`
echo "portmap=YES" >> /etc/rc.conf.local
portmap
2. It is recommended to provide a list of YP servers in the configuration file 
/etc/yp/
`domainname`
. Otherwise, the YP client daemon will use network broadcasts to find YP servers 
for its domain. Explicitly specifying the servers is both more robust and marginally less open to 
attack. If you have not set up any slave servers, just put the host name of the master server into 
/
etc/yp/`domainname`
. 
3. The YP client daemon is called 
ypbind(8)
. Starting it manually will create the directory 
/var/yp/
binding
, such that it will be automatically restarted at boot time. 
ypbind
http://www.openbsd.org/faq/faq10.html (30 of 32)9/4/2011 10:02:15 AM

10 - System Management
4. If all went well you should be able to query the YP server using 
ypcat(1)
and see your passwd map 
returned. 
ypcat passwd
bob:*:5001:5000:Bob Nuggets:/home/bob:/usr/local/bin/zsh
...
Other useful tools for debugging your YP setup include 
ypmatch(1)
 and 
yptest(8)
. 
The second part of configuring a YP client involves editing local configuration files such that certain YP 
maps get used by various system facilities. Not all servers serve all standard maps supported by the 
operating system, some servers serve additional non-standard maps, and you are by no means compelled 
to use all those maps. Which of the available maps shall or shall not be used, and for which purposes they 
shall be used, is fully at the discretion of the client host's system administrator. 
For a list of standard YP maps and their standard usage, see 
Makefile.yp(8)
. The most common use cases 
include: 
●
If you want to include all user accounts from the YP domain, append the default YP marker to the 
master password file and rebuild the password database: 
echo '+:*::::::::' >> /etc/master.passwd
pwd_mkdb -p /etc/master.passwd
For details on selective inclusion and exclusion of user accounts, see 
passwd(5)
. To test whether 
inclusion actually works, use the 
id(1)
 utility. 
●
If you want to include all groups from the YP domain, append the default YP marker to the group 
file: 
echo '+:*::' >> /etc/group
For details on selective group inclusion, see 
group(5)
. 
●
If you are distributing hostnames via YP, you should now review 
resolv.conf(5)
and check that the 
name service lookup order is correct. Most users will require a line like this: 
lookup file yp bind
[FAQ Index]
 
[To Section 9 - Migrating to OpenBSD]
 
[To Section 11 - The X Window System]
http://www.openbsd.org/faq/faq10.html (31 of 32)9/4/2011 10:02:15 AM

10 - System Management
 
www@openbsd.org
$OpenBSD: faq10.html,v 1.161 2011/05/27 01:36:59 lum Exp $
http://www.openbsd.org/faq/faq10.html (32 of 32)9/4/2011 10:02:15 AM

11 - The X Window System
 
[FAQ Index]
 
[To Section 10 - System Management]
[To Section 12 - Hardware and Platform-Specific 
Questions]
 

Download 1.27 Mb.

Do'stlaringiz bilan baham: