> There is a caveat with using BIND for cell server info. The database
> servers serve Kerberos tickets. The client have to trust the database
> servers, hence have to trust the nameserver which tells it where the
> database servers. There are Kerberos authenticated name servers in
> existence, but this does complicate matters.
are you saying that afsd does not engage in mutual authentication
with its principal service providers?
peter
- it would be nice if ... CellServDB... Brian Fitzgerald
- Re: it would be nice if ... C... peter honeyman
- Re: it would be nice if ... C... Peter Lister, Cranfield Computer Centre
- Re: it would be nice if .... peter honeyman
- Re: it would be nice if ... C... peter honeyman
- Re: it would be nice if ... C... peter honeyman
- Re: it would be nice if ... C... Peter Lister, Cranfield Computer Centre
- Re: it would be nice if ... C... Richard Basch
- Re: it would be nice if ... C... Bill . Doster
