This news is down right dis-heartening. Whether or not you're aware of it, almost all of today's computers use Kerberos in one way or another. The machine you're sitting at right now has probably used it at some point this morning to authenticate either itself, or you, as you logged on. The fact that there are now security issues means that screwing with the code in order to impersonate another person or PC has become a much more legitimate fear. BTW, don't pay attention to them leaving out Windows machines. Domains based on Win2K servers use it, too. **Edit - Apparently not. The MS version of Kerberos is apparently immune to these flaws. Yay. proprietary.**

"The flaws could allow an online intruder to gain access to computers running a security feature known as Kerberos. The vulnerabilities, found by the developers at the Kerberos Team at the Massachusetts Institute of Technology, should be patched as soon as possible, Sam Hartman, engineering lead for the team, said Wednesday."