I work on an application that is moving to Net-SNMP for its SNMP agent stack. The application already includes a web interface that allows users to configure v1 communities. Our communities are simple can be get/set or get only. I was planning to support the communities like: * define two access entries, one that supports get/set and one that supports get. say the names are rw_group and ro_group. * create a com2sec entry that creates security name equal to the community name * define group entries for each community based on its configured view type (read-only or read-write)
I want to be able to dynamically update these entries without restarting snmpd (I have my own coding running as a plugin in snmpd). It seems like I can *almost* achieve this by calling things like vacm_destroyGroupEntry. However, I noticed that com2SecEntry's are created in snmpUDPDomain.c and I don't see how I can dynamically update that (specifically remove entries that might get deleted). I've been able to do something similar for v3 USM user's, but v1 communities seems like it might not be possible. My questions are: 1) Is this a bad idea? 2) Am I reading the code correctly in that I've got to find some solution for com2SecEntries 3) Is there a resource leak in the existing code? ie if you delete a vacmAccessTable row, the code doesn't seem to go about freeing the com2SecEntry. 4) If this is a bad idea or not possible. I'd like to get your opinion on the best alternative. I was thinking of regenerating the snmpd.conf file and then sending the SIGHUP signal to snmpd to cause it to reload its config. Andy Doan __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ Net-snmp-coders mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/net-snmp-coders
