Security pointers about Kerberos5 realms open to a WAN

[Tom Yu]

>>>>> "Daniel" == Daniel Kahn Gillmor <dkg-mit.edu at fifthhorseman.net> writes:

Daniel> Hi kerberos folks--
Daniel> Could anyone point me to information about the security concerns
Daniel> involved with opening a krb5 realm to the Internet (or any other
Daniel> untrusted WAN)?

Authentication over an untrusted network is one of the core design
principles of Kerberos.

---Tom