On 10/10/07, <b class="gmail_sendername">Josh More</b> <<a href="mailto:morej@alliancetechnologies.net">morej@alliancetechnologies.net</a>> wrote:<div><span class="gmail_quote"></span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
OpenLDAP will take care of most of what you need. Set up the service on<br>each server, modify the shell auth to use LDAP, and make sure the two<br>services synchronize changes with one another. Recreate each user and<br>
set up the UIDs for each. </blockquote><br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">I will say that you may have some security issues, but if you want to
<br>do what you're doing, I'm guessing that there are good reasons. To<br>properly address the security concerns, I'd need to visit in person and<br>get a solid handle on what you're trying to do and why.
<br></blockquote></div><br clear="all">Thanks Josh, I didn't know there was a way to spread ssh keys through ldap. I just did some googling and it looks like this is possible.<br><br>I''l give it a try locally to see how it looks security-wise.
<br>-- <br>Matthew Nuzum<br>newz2000 on freenode