Hi, >From my understanding of SNMP RFCs when a user status in usmUserTable is >different from active then no management operations like gets/sets are allowed >on behalf of this user. However what I've noticed in net-snmp 5.3.1 and >5.4.rc1 that although user status is for example not in service then still >gets/sets operations can be performed successfully on behalf of this user.
Patch in the attachment fixes this problem. Now when a user status is different from active and one wants to perform operation on behalf of this user unsupported security level error is being returned. The patch can be applied to both 5.3.1 and 5.4.rc1. I've tested it using both mentioned version on Windows XP with SP1. By the way I have a question whether wouldn't be better to return unknown security name error than unsupported security level when a user status is not active and request on behalf of this user has been received??? Regards, Luke ---------------------------------------------------------------------- Jestes kierowca? To poczytaj! >>> http://link.interia.pl/f199e
snmpusm.c.patch
Description: Binary data
------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________ Net-snmp-coders mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/net-snmp-coders
