On 2008-06-26 07:01, Randy Presuhn wrote: > Hi - > >> From: "Juergen Schoenwaelder" <[EMAIL PROTECTED]> > ... >> Sent: Wednesday, June 25, 2008 11:13 AM >> Subject: Re: [OPSAWG] Gen-ART LC >> reviewofdraft-ietf-opsawg-snmp-engineid-discovery-02.txt > ... >> Any suggestion how to fix this? Would if be sufficient to add "if a >> security model does not provide a suitable discovery mechanism for >> contextEngineIDs", that is: >> >> If a device configuration permits non-secure SNMPv1/v2c access to a >> target system, then reading the snmpEngineID variable of the SNMP- >> FRAMEWORK-MIB will also reveal a suitable contextEngineID value for >> subsequent SNMPv3 usage. However, implementations should not rely >> on non-secure SNMPv1/v2c access and therefore MUST implement this >> specification to enable secure contextEngineID discovery if a >> security model does not provide a suitable discovery mechanism for >> contextEngineIDs. > > This looks fine to me.
I agree. That was the intention of my suggested change (but as Juergen noted, it can be read differently). Brian _______________________________________________ Gen-art mailing list [email protected] https://www.ietf.org/mailman/listinfo/gen-art
