On Wed, Sep 19, 2001 at 09:38:02AM -0500, Shawn Fertch wrote: > On the question about limiting/blocking users from certain machines, the > netgroup will that have to be multiple netgroups for various machines > blocked? Netgroups are nice for groups, but you can also do individual users. > While one may have > access to a client support server, they cannot have access to a Development > box. Yet, their manager may. In client support's /etc/passwd: + at csr:::::: +::::::/bin/false In development's /etc/passwd: +csr-manager:::::: + at development:::::: +::::::/bin/false (The last line denies access to everyone not previously given access.) You can also have local accounts on individual machines while using NIS to draw in account information on users without local accounts. NIS is extremely flexible that way. -- With the arrest of Dimitry Sklyarov it has become apparent that it is not safe for non US software engineers to visit the United States. - Alan Cox "To prevent unauthorized reading..." - Adobe eBook reader license