>>>>> On Tue, 25 Oct 2005 11:05:49 -0700, "Fong Tsui" <[EMAIL PROTECTED]> said:
Fong> When I enable v3 trap, I set the following in snmpd.conf Fong> trapsess -v 3 -e 0x0102030405 -u myuser -l authNoPriv -a MD5 -A Fong> 123456789 localhost:162 Fong> It works fine. But I wonder the password is human readable? Is there Fong> security concern? Yep, it is. And there isn't a way around that really. Alternatives: 1) You can make the file not readable. 2) you can use localized keys instead of a password. This is only marginally better, but can be better none the less depending on the architecture of what you're doing (if you use the same localized key everywhere you don't get anything; you have to have truly different keys everywhere which means traps with the same user but different engineIDs/keys or informs with the same engineID (of the inform receiver) but different usernames/keys everywhere. Whheeeeee -- Wes Hardaker Sparta, Inc. ------------------------------------------------------- This SF.Net email is sponsored by the JBoss Inc. Get Certified Today * Register for a JBoss Training Course Free Certification Exam for All Training Attendees Through End of 2005 Visit http://www.jboss.com/services/certification for more information _______________________________________________ Net-snmp-coders mailing list Net-snmp-coders@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/net-snmp-coders
