[OpenAFS] packet sniffing and file content

[aeneous@speakeasy.org]

> But the use of fcrypt is not limited to the kaserver.  It is also used
> by the ptserver, update (used to transfer key files between the SCM and
> other fileservers), for communication between the fileserver and the
> ptserver (for name to id mappings and to lookup group memberships), and
> between admin utilites (pts, kas, & bos) and the corresponding servers.
> If AFS servers are distributed across an unsecured network, there is
> lots of opportunity for mischief perpetrated by an attacker with access
> to a (hypothetical) high-speed fcrypt cracker.

How hard would it be for them to use a VPN for their Ubik servers?  For 
instance, CIPE or IPSec-based.
 
Public addresses in /usr/vice/etc/CellServDB on clients, private VPN addresses 
in /usr/afs/etc/CellServDB on Ubik servers.  VOTE_GetSyncSite wouldn't be 
useful.

Seems like it could be made to work with some fiddling.