Craig Everhart pointed me at the document for SRV records in the NFSv4 world, which includes in its security considerations some discussion of useful security measures when using GSS-API authentication with servers discovered via SRV records. I don't know to what extent this is applicable to rxgk, since it has a separate rxgk service, but it may be of interest and is at least worth reviewing.
http://tools.ietf.org/html/draft-ietf-nfsv4-federated-fs-dns-srv-namespace -- Russ Allbery ([email protected]) <http://www.eyrie.org/~eagle/> _______________________________________________ AFS3-standardization mailing list [email protected] http://michigan-openafs-lists.central.org/mailman/listinfo/afs3-standardization
