Security issues with the PAM modules for Kerberos?
In the description for libpam-heimdal it says: "This module should only
be used for local logins unless you really know what you are doing". On
the other hand it is quite tempting to use it for IMAP servers etc, so
what are the issues? Is it that it is easy to make misstakes in
configuration, or that it is possible to spoof with a fake KDC, or that
the code not is considered well audited, or something else?
Arne Nordmark Tel: +46 8 - 790 71 92
KTH/Mekanik Fax: +46 8 - 723 04 75
SE-100 44 STOCKHOLM Internet: email@example.com