Things to do:

 * if no preexisting installation, look for kerberos{,-1,-2,...} as
   defaults for KDC names
 * permit a principal other than admin/admin for accessing kadmind
   when not installing the master KDC
 * dump & reload database in case format changed
 * catch errors better, handle more common cases specially
 * GUI
 * permit selection between secure and insecure modes of daemons
 * get defaults for each app server from existing installation
 * v4 compat options
 * internal cleanup
 * random pithy quote at end, not always "have a nice day"
 * don't require admin/admin password just to check if v5srvtab
   already contains a host key (needs libkrb5tcl fix)
 * split reasonable pieces into library; the interfaces aren't quite right
   for that yet though, so it's a single monolithic application
 * Handle more preexisting-config information.  Some KDC values (e.g.,
   database pathname) are not handled.  Enctypes are not checked
   against what's actually supported in the release being installed.
   Etc.

Items for consideration:

 * When presenting a list of services for the sysadmin to add to
   /etc/services, omit ones already present.
 * If "kerberos 88/udp" is in /etc/services, don't add "kerberos-sec"
   on the same port.
 * Handle /usr/cygnus/kerbnet already being a relative link to the
   right target.  If it is, use the link for inetd.conf etc.
 * Always make the symlink relative??
 * Configure KDC logging options.  (Default is SYSLOG=ERR:AUTH, which
   AFAIK means syslog using "auth" facility, the "ERR" bit being
   ignored.)
 * Let user select name of symlink.  (Some support already exists for
   using a previously chosen name, but it's untested.)
 * Allow user to request disabling of insecure system daemons (e.g.,
   rshd and rlogind), both individually and as a group.
 * Allow entry of KDC names with port number specifications.
   (Currently no support in the script for non-default port numbers.)
 * If admin server appears more than once in KDC list (e.g., via cname
   records), still set up slave propagation to other servers.
   (How/when to update slave list when DNS changes?)
