On Sep 17, 2006, at 11:05 , Brian Eaton wrote: >> As you said this requires that the AFS-Server is being kept up to >> date. >> But the Images wouldn't have to be. Apart from this AFS hasn't had a >> major security-issue in the past several years. > > This is odd. MIT kerberos releases security patches a few times a > year, doesn't AFS need those patches?
Yes and no --- the last patchset, for example, was to the r-commands and telnet, IIRC. The correct answer to those is "just say no". -- brandon s. allbery [linux,solaris,freebsd,perl] [EMAIL PROTECTED] system administrator [openafs,heimdal,too many hats] [EMAIL PROTECTED] electrical and computer engineering, carnegie mellon university KF8NH _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/