Could someone lay out the precise format for /vay/yp/securenets
on a Sunos 4.1.3U1B machine?
In AIX 3.2.5 and AIX 4 (with appropriate PTFs) the file
/var/yp/securenets determines which NIS clients get information from
Now the master in a NIS environment typically binds to itself (if any).
To be more precise: ypbind binds to localhost, not to `hostname`, since
the broadcast on lo returns before the one on the ethernet.
But to allow the master ypbind get response from the master ypserv one
has to include a line like
Is this a security hole? Put it another way: Is it safer to
- include 127.0.0.1 in securenets
- run ypbind with the "-ypsetme" option and do a ypset `hostname`
Or is there a way to tell a non-ypset ypbind a list of allowed servers
to bind to on startup (which would exclude localhost)?
BTW: My bos.net.nis.client is 184.108.40.206, server 220.127.116.11. And I DID restart
the subsystems after changing securenets...
Michael J. Gruber
Institute of Mathematics