The Netscape Directory Server installation procedure leaves sensitive information in a file that is accessible to local users.