Måns Nilsson wrote: > > Having written so much, I do not find running the kdc as root is a very big > issue. The kdc must be secure beyond comprehension anyways... Couldn't there be circumstances under which a vulnerability in the KDC can used by an attacker only if the KDC is running as root? Maybe a combination of several vulnerabilities? Ciao, Michael.