Network diversity Software diversity

• Previous message (by thread): Network diversity Software diversity
• Next message (by thread): Network diversity Software diversity
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

At 12:12 AM 1/26/01 -0800, Roeland Meyer wrote:

>> From: Valdis.Kletnieks at vt.edu [mailto:Valdis.Kletnieks at vt.edu]
>> Sent: Thursday, January 25, 2001 11:48 PM
>> 
>> On Thu, 25 Jan 2001 22:40:50 PST, Roeland Meyer said:
>> > Okay, how do you do security, in Win2K, without a domain 
>> controller? 
>> > How do you do a Win2K domain without active directory?
>> 
>> Contrary to what many puntits would have you believe, you don't
>> need to be in a domain and be running AD just to serve up static HTML.
>> Beware such pundits - they are probably trying to sell you 
>> either a software
>> or hardware upgrade. ;)
>
>> You don't even need to be running Win2K.  I hear even NT 4.0 does
>> a passable job once you install all the IIS patches. ;)
>
>Actually, Linux does it better w/ Apache. But, IIS is a better RAD
>environment. But, that isn't the issue. The track started about DNS at MSFT.
>Windows networks have Win domain controllers ...

Windows networks don't have to have domain controllers.  Go read about the concept of member servers from NT4.  In reality, all Win2K serves start as member servers and are then promoted to domain controllers when the time comes to make them one.  They can also be demoted.  No one says you have to do that either.  How you build a network to serve static content and how you build a network for people to be able to log on, do file and printer sharing are radically different.  In fact, you don't even need domain controllers for the latter.  In that case, the onus is on you the user to figure out how to keep all your passwords on all your servers in sync.  Of course, people who run Unix tend to not have as much problem with this as people who are not that technically literate.


>> > > From: Eric Germann [mailto:ekgermann at cctec.com]
>> > > 
>> > > Uhh, I highly doubt they have a requirement to run DDNS on 
>> > > the front ends.  If all you're doing is serving up html pages 
>> > > without user authentication, Win2K is perfectly happy with 
>> > > its own internal account database.  DDNS is a pre-req for AD, 
>> 
>> As Eric said.... you don't need bells and whistles.  And if you're
>> building a machine that *has* to work, you probably want to avoid
>> bellls and whistles, as broken bell and whistle parts get jammed in
>> the gears and cause failures....
>
>MSFT is not running static anything.


Attribution???  probably not internally, but almost certainly on the DMZ.



==========================================================================
  Eric Germann                                        Inacom Info Systems
  egermann at inacomlima.com                             Lima, OH 45801
                                                      Ph:  419 331 9050
  ICQ:  41927048                                      Fax: 603 825 5893

"It is so easy to miss pretty trivial solutions to problems deemed
complicated.  The goal of a scientist is to find an interesting problem,
and live off it for a while.  The goal of an engineer is to evade
interesting problems :)"  -- Vadim Antonov <avg at kotovnik.com> on NANOG

• Previous message (by thread): Network diversity Software diversity
• Next message (by thread): Network diversity Software diversity
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]