[OpenAFS] with or without krb5 and openldap?

[Derek Atkins]

Karl Bowden <kbowden@pacificspeed.com.au> writes:

> On second thoughts, after looking into hesiod a bit further, it does not
> seem that secure at all. Would this be a correct view? If so I would
> rather keep working on an LDAP implimentation.

Hesiod is not any less secure than LDAP.  At least with Hesiod if you
deploy DNSSec you get complete security.  OTOH, you do not require a
significant amount of security on hesiod info -- who cares about your
GECOS field?  The real authentication security is from Kerberos.

>  - Karl

-derek

-- 
       Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
       Member, MIT Student Information Processing Board  (SIPB)
       URL: http://web.mit.edu/warlord/    PP-ASEL-IA     N1NWH
       warlord@MIT.EDU                        PGP key available