[OpenAFS] with or without krb5 and openldap?

[Russ Allbery]

John Rudd <jrudd@ucsc.edu> writes:

> What are you worried about having in Hesiod that you're concerned about
> its security?  The whole point of Hesiod is that there's nothing secure
> that you put in it.

You spoof DNS returns and thereby change your local UID.  Not necessarily
a nasty attack assuming that the system doesn't honor UIDs outside your
user UID space and you use AFS exclusively, but it might still let people
do nasty things in /tmp and the like.

LDAP is considerably easier to secure; for one, you can easily use SSL
with it, and you can go further and use GSSAPI authentication if you need
real protection.

DNSSEC doesn't actually exist in a deployable form for real-world
applications even according to the people who designed it, but that's
another argument.

-- 
Russ Allbery (rra@stanford.edu)             <http://www.eyrie.org/~eagle/>