]>
Commit | Line | Data |
---|---|---|
1 | .\" $OpenBSD: ypserv.8,v 1.9 1997/09/04 00:43:19 deraadt Exp $ | |
2 | .\" Copyright (c) 1994 Mats O Jansson <moj@stacken.kth.se> | |
3 | .\" All rights reserved. | |
4 | .\" | |
5 | .\" Redistribution and use in source and binary forms, with or without | |
6 | .\" modification, are permitted provided that the following conditions | |
7 | .\" are met: | |
8 | .\" 1. Redistributions of source code must retain the above copyright | |
9 | .\" notice, this list of conditions and the following disclaimer. | |
10 | .\" 2. Redistributions in binary form must reproduce the above copyright | |
11 | .\" notice, this list of conditions and the following disclaimer in the | |
12 | .\" documentation and/or other materials provided with the distribution. | |
13 | .\" 3. All advertising materials mentioning features or use of this software | |
14 | .\" must display the following acknowledgement: | |
15 | .\" This product includes software developed by Mats O Jansson | |
16 | .\" 4. The name of the author may not be used to endorse or promote products | |
17 | .\" derived from this software without specific prior written permission. | |
18 | .\" | |
19 | .\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS | |
20 | .\" OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED | |
21 | .\" WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | |
22 | .\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY | |
23 | .\" DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | |
24 | .\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | |
25 | .\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | |
26 | .\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | |
27 | .\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | |
28 | .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | |
29 | .\" SUCH DAMAGE. | |
30 | .\" | |
31 | .Dd June 27, 1994 | |
32 | .Dt YPSERV 8 | |
33 | .Os | |
34 | .Sh NAME | |
35 | .Nm ypserv | |
36 | .Nd YP server daemon | |
37 | .Sh SYNOPSIS | |
38 | .Nm ypserv | |
39 | .Op Fl 1 | |
40 | .Op Fl a Ar aclfile | |
41 | .Op Fl d | |
42 | .Op Fl x | |
43 | .Sh DESCRIPTION | |
44 | .Nm Ypserv | |
45 | is a fundamental part of the network information system called YP. | |
46 | This server provides information from YP maps to the YP clients | |
47 | on the network. | |
48 | .Pp | |
49 | A YP map is stored on the server as a | |
50 | .Xr db 3 | |
51 | database. A number of YP maps is grouped together in a domain. | |
52 | .Ar Ypserv | |
53 | determines the domains it serves by looking for a directory with | |
54 | the domain name in | |
55 | .Ar /var/yp . | |
56 | .Pp | |
57 | YP hasn't been known for high security through the years. In recent years | |
58 | security has improved by restricting access to the server. In SunOS 4.1 | |
59 | has a new file occured named | |
60 | .Ar /var/yp/securenet . | |
61 | It contains networks the server can assume is secure. For information about | |
62 | file format see | |
63 | .Xr securenet 5 . | |
64 | .Pp | |
65 | Before the author of this server had seen | |
66 | .Xr securenet 5 | |
67 | another format was implemented | |
68 | .Xr ypserv.acl 5 . | |
69 | This file format makes it possible to allow and deny hosts and networks | |
70 | access to the server. This file can have any name since it's given by | |
71 | the argument to | |
72 | .Fl a | |
73 | (use full path). | |
74 | .Pp | |
75 | The file used can be reread by sending a SIGHUP to ypserv. The process pid | |
76 | can be found in the file | |
77 | .Nm /var/run/ypserv.pid | |
78 | . | |
79 | .Pp | |
80 | If a host isn't secure all queries to the server will result in a YP_NODOM | |
81 | result. | |
82 | .Pp | |
83 | If the file | |
84 | .Nm /var/yp/ypserv.log | |
85 | exists then messages will be written to the file. | |
86 | .Pp | |
87 | If a directory named the same as the system domainname exists in | |
88 | .Nm /var/yp/ | |
89 | (ie. the domainname is | |
90 | .Nm foo | |
91 | and directory | |
92 | .Nm /var/yp/foo | |
93 | exists), then ypserv will be automatically started at boot time. | |
94 | .Pp | |
95 | The options are as follows: | |
96 | .Bl -tag -width indent | |
97 | .It Fl 1 | |
98 | Allow ypserv to answer old YP version 1 requests. | |
99 | .It Fl a Ar aclfile | |
100 | Don't use | |
101 | .Ar /var/yp/securenet . | |
102 | Use another file with another file format. For futher information see | |
103 | man page for | |
104 | .Ar ypserv.acl . | |
105 | .It Fl d | |
106 | Use Internet Domain Name System. If a query to map | |
107 | .Ar hosts.byname | |
108 | or | |
109 | .Ar hosts.byaddr | |
110 | fails, make a DNS query and return the result if successful. | |
111 | Alternately, if these maps were built on the YP master using | |
112 | .Nm makedbm | |
113 | .Fl b | |
114 | then DNS queries will be done without needing to specify | |
115 | .Fl d . | |
116 | .It Fl x | |
117 | Terminate the server after processing | |
118 | .Ar aclfile | |
119 | or | |
120 | .Ar /var/yp/securenet . | |
121 | .El | |
122 | .Sh FILES | |
123 | .Bl -tag -width /var/yp/ypserv.log -compact | |
124 | .It Pa /var/yp/ypserv.log | |
125 | .It Pa /var/yp/securenet | |
126 | .It Pa /var/run/ypserv.pid | |
127 | .El | |
128 | .Sh SEE ALSO | |
129 | .Xr yp 8 , | |
130 | .Xr ypserv.acl 5 , | |
131 | .Xr securenet 5 , | |
132 | .Xr ypbind 1 | |
133 | .Sh AUTHOR | |
134 | Mats O Jansson <moj@stacken.kth.se> |