Looks like a proper exchange to me: - manager sends generic GET request to get the engineID - agent responds with it - manager sends a protected message using the right engineID - agent responds with "here's my current clock settings" (boots = 0, time = 291) - manager sends request using 0/291 - the agent responds; since it's encrypted I don't know what's in the response. But nothing looks wrong from what I can see.
Hmm... wait... The privacy parameters are all 0s. That's likely broken. Though a all zero salt should work, I wouldn't recommend it and thus I consider the manager "broken" (insecure) even though the packets "should likely work" as is. -- Wes Hardaker Please mail all replies to [email protected] ------------------------------------------------------------------------------ This SF.net email is sponsored by Make an app they can't live without Enter the BlackBerry Developer Challenge http://p.sf.net/sfu/RIM-dev2dev _______________________________________________ Net-snmp-coders mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/net-snmp-coders
