Security implications of using FeedReader?

Topics: User Forum
Jul 30, 2008 at 8:55 AM
The built-in RSS viewer webpart that comes with MOSS only supports authenticated feeds if you use Kerberos. But if you use FeedReader, you can show internal authenticated MOSS-feeds even if you don't use Kerberos. I'm curious - what are the security implications of that?

I read a discussion where the following was said:

"I heard the Smiling Goat RSS viewer web part doesn't need Kerberos to work. But that's if you want to use a 3rd party tool and don't mind the security implications of sending the MOSS service account out (the reason why Microsoft disabled their RSS viewer unless you use kerberos)."

What is really being exposed here? The MOSS service account name to the servers running the external feeds you subscribe to? If yes, how bad is that? Are there any more implications?

I'd be grateful for any thoughts!