Security pointers about Kerberos5 realms open to a WAN
Henry B. Hotz
hotz at jpl.nasa.gov
Thu Nov 2 17:39:44 EST 2006
On Nov 1, 2006, at 4:37 PM, kerberos-request at mit.edu wrote:
> Kerberos does depend upon properly functioning DNS as well. Its
> possible that a compromised DNS service could do evil things to your
> Kerberos infrastructure.
Though the "evil things" are almost exclusively DOS, AFAIK.
------------------------------------------------------------------------
----
The opinions expressed in this message are mine,
not those of Caltech, JPL, NASA, or the US Government.
Henry.B.Hotz at jpl.nasa.gov, or hbhotz at oxy.edu
More information about the Kerberos
mailing list