> > #1 is not an issue since we don't run kerberized telnet. > > #2 and #3 are pretty embarrassing, but not really a surprise given how > ugly the MIT code is. Fortunately they can only be exploited by > people with Kerberos principals, which, right now is pretty small. We > should definately upgrade as soon as a patch is available. > > I may switch my personal machines to Heimdal after this. I'll let you > know how it goes. > > - a
Do our installed OpenAFS packages address DSA-1271-1 openafs -- design error ? -ntk _______________________________________________ HCoop-SysAdmin mailing list [email protected] http://hcoop.net/cgi-bin/mailman/listinfo/hcoop-sysadmin
