[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Running kdc as unprivileged user

Måns Nilsson wrote:
> Having written so much, I do not find running the kdc as root is a very big
> issue.  The kdc must be secure beyond comprehension anyways... 

Couldn't there be circumstances under which a vulnerability in the KDC
can used by an attacker only if the KDC is running as root? Maybe a
combination of several vulnerabilities?

Ciao, Michael.