[Bug 1880724] Re: Add (D)TLS support by default to snmpd
Fixed in Debian version 5.8+dfsg-3 (see above bug for details) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1880724 Title: Add (D)TLS support by default to snmpd To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/net-snmp/+bug/1880724/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1880724] Re: Add (D)TLS support by default to snmpd
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=964054 (Done, a bug is added) ** Bug watch added: Debian Bug tracker #964054 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=964054 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1880724 Title: Add (D)TLS support by default to snmpd To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/net-snmp/+bug/1880724/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1880724] Re: Add (D)TLS support by default to snmpd
Thanks Paride, I understand the this isn't urgent enough to make it to SRU. I don't have acess to a debian system, so, just sent submittted a bug report (wishlist) viz e-mail, don't see that reflected in the link you have shared, but should be with the debian guys now, will paste a link once I have access to it. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1880724 Title: Add (D)TLS support by default to snmpd To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/net-snmp/+bug/1880724/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1880724] Re: Add (D)TLS support by default to snmpd
And the patch for 5.7.3 version, but if you switch to latest version it supports openssl OOB, just need to pass DTLS/TLS and TSM options to configure, no need of any extra patches. And to confirm net-snmp already links with openssl, see https://git.launchpad.net/ubuntu/+source/net-snmp/tree/debian/rules?h=ubuntu/bionic-devel#n48 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1880724 Title: Add (D)TLS support by default to snmpd To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/net-snmp/+bug/1880724/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1880724] Re: Add (D)TLS support by default to snmpd
Thanks. I have lifted the openssl patch from https://src.fedoraproject.org/rpms/net- snmp/blob/e4d5ceb957a64d6994629f84901d9f76d2ffed9b/f/net- snmp-5.7.3-openssl.patch, so, not my place to upstream it. And as per https://www.openssl.org/source/license.html it seems like a free license at least for 1.X.Y versions. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1880724 Title: Add (D)TLS support by default to snmpd To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/net-snmp/+bug/1880724/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1880724] Re: Add (D)TLS support by default to snmpd
Ah..sorry, the default version might not have openssl enabled, I was looking at my changed version, and I had to patch net-snmp to support OpenSSL 1.1.0. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1880724 Title: Add (D)TLS support by default to snmpd To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/net-snmp/+bug/1880724/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1880724] [NEW] Add (D)TLS support by default to snmpd
Public bug reported: The default configure options for SNMPd have openssl enabled but don't support (D)TLS which is essential to have authPriv support in SNMPv3, for this we have to compile the package with only changing the configure option, which is a pain. As OpenSSL is already enabled, I don't see any reason not to enable (D)TLS by default. Observed in 18.04 (probably true in 20.04, don't see any change in the Ubuntu's git mirror of net-snmp) ** Affects: net-snmp (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1880724 Title: Add (D)TLS support by default to snmpd To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/net-snmp/+bug/1880724/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs