In-Reply-To: <[EMAIL PROTECTED]> I don't really see the point... Possible vulnerabilities (if I didn't horribly misunderstand something):
*The AFS server would still need to be updated to keep it secure. *If the imaged OS is rootable: **The AFS clients that load the images could be replaced by phishnets. **The attacker could pose as the user having access to Kerberos credentials. (So rm -r / would delete the users "securely kept files") Or do users only have read-only access to their files?? That doesn't seem useful. Nyoro~n _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
