Very Computer

Under SunOS 4.1.2 with patched rpc.yppasswdd:

We're expecting lots of people to try to change their passwords when
they get back in the fall.  If two people try to change their password
within a relatively short period of time (with yppasswd), an error
message, stating that the password file is "busy", is produced.

The yppasswd() library routine returns 0 on success, according to
yppasswd(3).  How about on failure?  How is yppasswd(1) able to
distinguish between a "busy" password file and an incorrect password
error?  How does rpc.yppasswdd lock the password file?  I've traced it
and seen it create and then remove /etc/ptmp--is this it?  I've also
gotten the password file busy message after /etc/ptmp has been
removed.  Do all of the programs in the NIS Makefile that read from
the password file also use /etc/ptmp?

Finally, I'm sure other sites have had problems with many users trying
to change their password at once.  One solution I've thought of is to
create some sort of server application that has exclusive access to
the password file (and is the only program that will ever do a make in
/var/yp) but this doesn't seem like a good solution.

Any advice is welcome.  Please answer via email; if there is interest,
I'll summarize responses.

Matt

Quote:>Under SunOS 4.1.2 with patched rpc.yppasswdd:
>The yppasswd() library routine returns 0 on success, according to
>yppasswd(3).  How about on failure?

It returns numbers between 1 and 20, which can be used to index into
an array of error messages.  Do a strings on /bin/passwd to see the
messages.  Here are the first few:

No error
Error from pre 4.1 version
Password incorrect
No changeable fields were changed

Quote:>     How does rpc.yppasswdd lock the password file?  I've traced it
>and seen it create and then remove /etc/ptmp--is this it?

All versions use PASSWDFILE.ptmp as a lock file and a temporary file.
Recent patches for yppasswdd also use /etc/ptmp as a lock file.
`vipw' respects /etc/ptmp.

Quote:>                                                    I've also
>gotten the password file busy message after /etc/ptmp has been
>removed.  Do all of the programs in the NIS Makefile that read from
>the password file also use /etc/ptmp?

Nothing in the NIS Makefile does locking.  If you do a second make while
the first one is running, you will wind up with an empty passwd map.
The recently-patched yppasswdd will check to see if its own make has completed.
It won't protect against another process doing the make.

Quote:>Any advice is welcome.  Please answer via email; if there is interest,

Oops, too late.
--
-Gary Mills-         -Networking Group-          -U of M Computer Services-