On 09/02/07, Fong Tsui <[EMAIL PROTECTED]> wrote:
> Is there a way to get auth passphrase and private passphrase from
> usmUser line in the persistent snmpd.conf?
No.
The agent does not work with the passphrases themselves.
Instead it converts them into "localised keys", and this is what
is saved in the usmUser line.
There is no way to reverse this, and go from a localised key
to the original pass phrase. And that localised key cannot be
re-used on another system.
This is the same basic idea as a standard Unix password file,
where a random salt is used to mangle the password, and it's
this mangled form that's saved in /etc/password (or /etc/shadow).
There's no way to reverse this mangling either.
The details for SNMPv3 are somewhat different, but the basic
concept is the same.
> I assume: auth passphrase is 0xfefa802d7734f26a4e42ff1b17140684 and
> private passphrase is 0xfefa802d7734f26 in the following line.
Close, but no.
These are the localised keys used for authentication and encyrption,
but they are not the pass phrases. See above.
Dave
-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier.
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
Net-snmp-coders mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/net-snmp-coders
