Thank you very much. Sérgio Cabaço
-----Original Message----- From: Wes Hardaker [mailto:[email protected]] Sent: quinta-feira, 26 de Fevereiro de 2009 0:09 To: Dave Shield Cc: Wes Hardaker; Sergio Cabaço; [email protected] Subject: Re: Changing password first boot 5.3.2 >>>>> On Wed, 25 Feb 2009 11:12:47 +0000, Dave Shield >>>>> <[email protected]> said: DS> When creating a new user, it is an 'inconsistentName' DS> error for a set operation to refer to this object DS> unless it is previously or concurrently initialized DS> through a set operation on the corresponding instance DS> of usmUserCloneFrom. Actually the text that I think brought up that code was this one from the usmUserStatus object: In particular, a newly created row for a user who employs authentication, cannot be made active until the corresponding usmUserCloneFrom and usmUserAuthKeyChange have been set. DS> So I'm not convinced that this blanket requirement for a valid DS> user-> cloneFrom field is actually justified. Yeah, I thought I said that. IE, cloned users should be subject to requiring an auth change. I'm now wondering if that code is simply in the wrong place or something (IE, it should be in the rowstatus column and be checking for active). In summary, there are multiple issues: 1) users must be cloned if created over the wire. 2) our code doesn't distinguish cloned vs snmpd.conf created users but it should. 3) users must not be active until cloned (from text above) 4) The inconsistentName error should be returned for the usmUserPrivKeyChange object only if the user has *not* been cloned (and originated from an on the wire row-creation). IE, it's designed to not let it be SET unless the value was previously a key cloned from a different user. Note that if the cloned-from user didn't have a privacy key then the new user can never have a privacy key. -- Wes Hardaker Sparta, Inc. ------------------------------------------------------------------------------ Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H _______________________________________________ Net-snmp-coders mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/net-snmp-coders
