[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Alternatives to LDAP

To: OpenLDAP-software@OpenLDAP.org
Subject: Re: Alternatives to LDAP
From: Dan Melomedman <dan@devonit.com>
Date: Fri, 26 Jul 2002 19:34:20 -0400
Content-disposition: inline
In-reply-to: <Pine.GSO.4.33.0207261752590.18127-100000@agassiz.cs.und.edu>
References: <Pine.GSO.4.33.0207261752590.18127-100000@agassiz.cs.und.edu>
User-agent: Mutt/1.4i

Caylan Van Larson wrote:
> Hello,
> 
> Other than using openldap and other ldap implementations, are there any
> alternatives available for _only_ doing global authentication?  I do not
> need the robustness of ldap for the purposes used on campus.  Originally

Your problem is PAM, not LDAP. You could try NIS, or NIS and NIS-to-LDAP
gateway. But you will probably hate NIS even more.

PAM is PITA. Both in design and implementation. It is a chore to
administer. It is heavy on resources (when you run servers spawning
these modules for busy servers is a lot of CPU)
Its convoluted design is hard to even understand for most people.
The documentation for it is lacking. And last time I tried pam-ldap
(which admittedly was a long time ago) it did not even support MD5
passwords.

The real problem is the lack of libraries for Unix-from-LDAP
authentication. That said, anyone want to write gepw* for LDAP?

Follow-Ups:
- Re: Alternatives to LDAP
  - From: David Wright <ichbin@shadlen.org>

References:
- Alternatives to LDAP
  - From: Caylan Van Larson <caylan@cs.und.edu>

Prev by Date: Re: FW: Application Error in slapd.exe on W2000
Next by Date: Re: OpenLDAP 2.1.3 and Berkeley DB 4.0.14
Index(es):
- Chronological
- Thread