Hi,
I am using net-snmp5.7.3 agent. I am using USM user table to create 2nd and
3rd Snmpv3 user.
The user is getting created successful and I am able to contact using the
new user.
However these user accounts are not persistent and they get cleared off
after power cycle.
Is there anyway to make
Hi
I am trying to implement persistent data store.
First I have manually created myModule.conf file . In which i defined four
tokens (token_1,token_2,...) with value 1,2,3,4 respectively.
(Should these token`s name same as the variables` names that i want to set
using snmpset? )
Then in
Hello,
I came upon the following problem. I am setting the location of snmpd.conf
using --with-persistent-directory switch whilst running the ./configure
script. Howerver, the compiled binary does not attempt to read information
from this file but rather from the default /var/net-snmp/snmpd.conf
Thanks Dave.
On Tue, Feb 28, 2012 at 4:50 AM, Dave Shield wrote:
> On 23 February 2012 17:06, Ravi Kumar wrote:
> > why can not we keep snmpv3 users in non persistent snmpd.conf ?
>
> You can. It's perfectly possible to set up SNMPv3 users in the
> "normal&quo
On 23 February 2012 17:06, Ravi Kumar wrote:
> why can not we keep snmpv3 users in non persistent snmpd.conf ?
You can. It's perfectly possible to set up SNMPv3 users in the
"normal" snmpd.conf file. (I'll often do this with temporary
config files, while debuggi
On Thu, 23 Feb 2012 14:00:25 +0530 Ravi wrote:
RK> Hi All,
RK>
RK> What is this persistent data file ? what type of information should be
RK> stored in this ?
RK>
RK> /var/net-snmp/snmpd.conf
This is where the agent and mib modules can store persistent information
(informat
set dims I am completely lost!
-Hope this helps . . . certkey might handle serials , maybe certd for
short.
-Chris
On Feb 23, 2012, at 12:30 AM, Ravi Kumar wrote:
On Feb 23, 2012, at 12:30 AM, Ravi Kumar wrote:
> Hi All,
>
> What is this persistent data file ? what type of informati
why can not we keep snmpv3 users in non persistent snmpd.conf ?
what are these ?
setserialno 1723900303
ifXTable .1 14:0 18:0x $
oldEngineID 0x80001f88805c454f7f278d544c
thanks
On Thu, Feb 23, 2012 at 6:26 PM, Ballu ballu wrote:
> this file used for snmp v3. It st
Hi All,
What is this persistent data file ? what type of information should be
stored in this ?
/var/net-snmp/snmpd.conf
what are the following lines in this file ?
setserialno 1723900303
ifXTable .1 14:0 18:0x $
oldEngineID 0x80001f88805c454f7f278d544c
who can set these ?
Thanks
> On Wed, 29 Dec 2010 09:28:44 +0100, Niels Baggesen
> said:
NB> FYI, I am trying to set up some buildbots under VMware to verify
NB> that the 5-5 and 5-6 patches branches compile and minimally works
NB> under current *BSD and Solaris releases, but it will probably take
NB> till some tim
On Tue, Dec 28, 2010 at 05:33:16PM -0800, Wes Hardaker wrote:
> > On Wed, 22 Dec 2010 15:55:14 +0100, Niels Baggesen
> > said:
>
> NB> Index: snmplib/vacm.c
>
> FYI, applied.
Thanks. It has been (is still) a bit hectic over Xmas work-wise, so
I hadn't gotten around to it.
FYI, I am tr
> On Wed, 22 Dec 2010 15:55:14 +0100, Niels Baggesen
> said:
NB> Index: snmplib/vacm.c
FYI, applied.
--
Wes Hardaker
Please mail all replies to [email protected]
--
Learn how Oracle Real Ap
> On Wed, 22 Dec 2010 21:42:36 +, Dave Shield
> said:
DS> 5.5.1: +1
DS> 5.6.1: +1 iff rc2 scheduled
DS> -1 otherwise
Right, as of my last mail that'll be a +1 :-)
(and a +1 from me)
--
Wes Hardaker
Please mail all replies to [email protected]
---
On 22 December 2010 14:55, Niels Baggesen wrote:
> The bug describes how the view mask is lost when read from the snmpd
> persistent file.
5.5.1: +1
5.6.1: +1 iff rc2 scheduled
-1 otherwise
On Wed, 22 Dec 2010 15:55:14 +0100 Niels wrote:
NB> The bug describes how the view mask is lost when read from the snmpd
NB> persistent file.
NB>
NB> This patch fixes it (and removes some identity casts). The crucial
NB> point is setting the viewMaskLen before calling read_oc
The bug describes how the view mask is lost when read from the snmpd
persistent file.
This patch fixes it (and removes some identity casts). The crucial
point is setting the viewMaskLen before calling read_octet_string.
Index: snmplib/vacm.c
On Wed, 25 Mar 2009 20:56:13 -0400,
lanas wrote :
> Using net-snmp 5.4.1 and creating one V3 user, I noticed that the
> persistent snmpd.conf file is always growing at each shutdown and
> startup of the daemon. An env. var is used to specify an alternate
> path to that file (now i
On Thu, 26 Mar 2009 09:34:11 +,
Dave Shield wrote :
> 2009/3/26 lanas :
> > Using net-snmp 5.4.1 and creating one V3 user, I noticed that the
> > persistent snmpd.conf file is always growing at each shutdown and
> > startup of the daemon.
>
> What is the differ
2009/3/26 lanas :
> Using net-snmp 5.4.1 and creating one V3 user, I noticed that the
> persistent snmpd.conf file is always growing at each shutdown and
> startup of the daemon.
What is the difference between two successive copies of the file?
I've just tried this with my insta
Hello all,
Using net-snmp 5.4.1 and creating one V3 user, I noticed that the
persistent snmpd.conf file is always growing at each shutdown and
startup of the daemon. An env. var is used to specify an alternate path
to that file (now in /etc/snmpd/persistent/).
I noticed that some years ago a
On Sun, 03 Jun 2007 13:31:20 -0400 Glenn wrote:
G> We have a device that will be using net-snmp as our SNMP stack. The
G> device uses RAM for the filesystem, and uses flash for persistent
G> storage. [...]
G>
G> One of the things we are trying to do is minimize the number o
We have a device that will be using net-snmp as our SNMP stack. The
device uses RAM for the filesystem, and uses flash for persistent
storage. We need to support SNMP-TARGET-MIB, SNMP-NOTIFICATION-MIB,
etc. that have read-write OIDs. Happily, net-snmp already implements
these MIBs
Thanks
The issue resolved when provided persistent file path
to snmpd command line.
--- Thomas Anders <[EMAIL PROTECTED]> wrote:
> alok bharti wrote:
> > the exact command line is:-
> >
> > ./snmpd -c /path/to/snmpd.conf -C -f
>
> That's the problem, t
alok bharti wrote:
> the exact command line is:-
>
> ./snmpd -c /path/to/snmpd.conf -C -f
That's the problem, then. You're instructing the agent to only read the
regular /path/to/snmpd.conf, not the persistent config file. Try
snmpd -c /path/to/snmpd.conf,/var/net-sn
Hi,
The ENV variable are default.
I started snmpd on foreground.
the exact command line is:-
./snmpd -c /path/to/snmpd.conf -C -f
I am giving cntl-C for a shutdown.
launched again with same command line to restart.
the persistent file path is default:
/var/net-snmp/snmpd.conf
when agent shuts
alok bharti wrote:
> I created a number of snmpv3 users using snmpusm while
> agent (snmpd) was running.
> I could query agent using new snmpv3 users.
>
> On snmpd shutdown, I could see that it has updated
> the persistent file (/var/net-snmp/snmpd.conf) with
> new use
Hi,
I created a number of snmpv3 users using snmpusm while
agent (snmpd) was running.
I could query agent using new snmpv3 users.
On snmpd shutdown, I could see that it has updated
the persistent file (/var/net-snmp/snmpd.conf) with
new user entries as "usmUser ".
but when I restart
On 16/08/06, Siva Prakash Reddy G <[EMAIL PROTECTED]> wrote:
> There are var_ routine and write_ routine, Here write_ routine
> is executed during SET,
If you're using the "traditional" (v4 UCD) module API, yes.
The newer v5 helper-based modules use a different approach.
>when
Title: Message
Hi!
There are var_
routine and write_ routine, Here write_ routine is executed
during SET,
e the problem?i don't know where things are going wrong.
With Regards.
G.Siva Prakash Reddy.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of Dave Shield
Sent: Tuesday, August 08, 2006 6:57 PM
To: Siva Prakash Reddy G
Cc: net-snmp-coders@lists
On 08/08/06, Siva Prakash Reddy G <[EMAIL PROTECTED]> wrote:
> I have tried with, what you have suggested me, then also it is not
> working. I have used function
> read_config_store_data(ASN_OCTET_STR,
> cptr,&station_table->disassociateStation,&tmpint); it started working,
> but
On 08/08/06, Siva Prakash Reddy G <[EMAIL PROTECTED]> wrote:
> to store mib variables in to the configuration file, he is using
> snmpd_store_config(line);
Correct.
> but this function takes arguments const char * pointer.
Yes - that's the line of text that should be saved into the config fi
On 08/08/06, Siva Prakash Reddy G <[EMAIL PROTECTED]> wrote:
> i'm getting these many error
> /var/net-snmp/snmpd.0.conf: line 12: Warning: Unknown token:
> mediumoccupancylimit.
This isn't one of the standard tokens, so I presume this relates to
your private MIB?
How have you registered this t
Title: Message
Hi!
I have
reffered system_mib.c, in that, to store mib variables in
to the configuration file, he is using
snmpd_store_
Title: Message
Hi!Dav
Thanks for constant
helping.
i'm getting these many error and
warnings when i run this command "snmpd -f -L
-D
On 04/08/06, Siva Prakash Reddy G <[EMAIL PROTECTED]> wrote:
> 1. what will happen when agent start running and which function will be
> executed
init_system_mib()
(Surely you could have guessed that!)
In general, if the module is called "myModule.c", then the agent will
look for a matchin
Title: Message
Hi!
1. what will
happen when agent start running and which function will be executed
( system_mib.c)
t just at shutdown. Use one of the other hooks for general-purpose
closedown processing.
SNMP_CALLBACK_STORE_DATA is specifically for saving persistent config data.
Dave
-
Take Surveys. Earn Cash. Influence the Future of I
Title: Message
Hi!
When i
say agent stop, which function is executed in system_mib.c
file.
how can I procced.
With Regards.
G.Siva Prakash Reddy.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of Dave Shield
Sent: Wednesday, August 02, 2006 3:38 PM
To: Siva Prakash Reddy G
Cc: net-snmp-coders
Subject: Re: persistent data storage
On 03/08/06, Siva Prakash Reddy G <[EMAIL PROTECTED]> wrote:
> 1. If compile with latest source code, what about already
> existing code.
What about it?
The latest version of the source will presumably include anything that
you're currently using.
Unless you've already added new MIB module
lf Of Dave Shield
Sent: Wednesday, August 02, 2006 3:38 PM
To: Siva Prakash Reddy G
Cc: net-snmp-coders
Subject: Re: persistent data storage
[ First - *please* don't mail me privately, without copying
any responses to the mailing list. I don't have the time
or inclination t
[ First - *please* don't mail me privately, without copying
any responses to the mailing list. I don't have the time
or inclination to offer private, unpaid, SNMP consultancy.
Keep discussions to the list, where others can both learn
and offer advice. Thanks. ]
On 02/08
Sent: Wednesday, August 02, 2006 2:06 PM
To: Siva Prakash Reddy G
Cc: [email protected]
Subject: Re: persistent data storage
On 02/08/06, Siva Prakash Reddy G <[EMAIL PROTECTED]> wrote:
> 1. what is use of the var_X() function, what it does?
This is the rou
On 02/08/06, Siva Prakash Reddy G <[EMAIL PROTECTED]> wrote:
> 1. I have station config table, in this table there are 23
> variables are there, like, station ID, Medium occpuancy limit,
> association request, etc.., whether I need to register each and every
> variable to agent or if I re
On 02/08/06, Siva Prakash Reddy G <[EMAIL PROTECTED]> wrote:
> 1. what is use of the var_X() function, what it does?
This is the routine that actually does the real work.
When a request for an X object arrives, this is the code that
provides the corresponding value.
> snmpd_regis
, 2006 5:45 PM
To: Siva Prakash Reddy G
Cc: [email protected]
Subject: Re: persistent data storage
On 01/08/06, Siva Prakash Reddy G <[EMAIL PROTECTED]> wrote:
> I mean, how to check the data is stored in configuration file
> are not.
cat /var/net-snm
a Prakash Reddy G
Cc: [email protected]
Subject: Re: persistent data storage
On 01/08/06, Siva Prakash Reddy G <[EMAIL PROTECTED]> wrote:
> I mean, how to check the data is stored in configuration file
> are not.
cat /var/net-snmp/snmpd.conf
>H
Hi!
> I don't understand. What do you mean by "compiling" a storage
file? Persistent storage is handled just like any other snmpd.conf file
- it contains a series of configure directives, which are read in as
usual. There's no compilation needed.
On 01/08/06, Siva Prakash Reddy G <[EMAIL PROTECTED]> wrote:
> I mean, how to check the data is stored in configuration file
> are not.
cat /var/net-snmp/snmpd.conf
>How do I know in which configuration file data is stored.
net-snmp-config --persistent-direc
On 27/07/06, Siva Prakash Reddy G <[EMAIL PROTECTED]> wrote:
> How to write persistent data storage
snmpd_store_config();
See (for example) 'system_store' in the file agent/mibgroup/mibII/system_mib.c
This covers both how to write data out to persistent storage,
Title: Message
Hi!
How to write
persistent data storage. Is their any tool to generate persistent
data storage file for MIB file.After
>>>>> On Tue, 06 Dec 2005 13:51:57 -0500, [EMAIL PROTECTED] said:
cnelson> Presently the persistent store for the agent has usmUser which is
cnelson> lightly encrypted security information.
Note: it's not encrypted at all. It's hex representation of keys and
agent running as a different user.
OK - so that was the immediate question that triggered this discussion.
> 3) I think the correct fix is actually to define which tokens are
>allowed to exist in the persistent storage file. Something like...:
>if (user !
> ...
> I'd also like to see a hard-coded list of tokens where were
> excluded (eg pass).
>
> We should probably apply this logic to *any* config file which is
> writable by anyone other than root.
Presently the persistent store for the agent has usmUser which is
lig
> On Tue, 6 Dec 2005 10:30:35 -0800 (PST), "David T. Perkins" <[EMAIL
> PROTECTED]> said:
David> By the way, the StorageType TC is pretty broken (fatally flawed)
David> in it's assumptions. That is, really doesn't match the semantics
David> of real systems. I hope that the work that is be
x is actually to define which tokens are
WH> allowed to exist in the persistent storage file.
Robert> I had this thought too. This works ok as long as you trust all
Robert> your mib modules.
if you don't trust them, shove them into a sub-agent. When would you
not trust one rolled in
gt;allowed to exist in the persistent storage file.
I had this thought too. This works ok as long as you trust all your mib
modules.
WH>Something like
WH>netsnmp_app_register_persistent_token("foo") which would specify
WH> that token was legal to load from a persistent
Tue, 6 Dec 2005, Wes Hardaker wrote:
> >>>>> On Mon, 5 Dec 2005 07:02:09 -0500, Robert Story <[EMAIL PROTECTED]>
> >>>>> said:
>
> Robert> Yes, though the persistent store can be written at other times
> Robert> too. The temporary switch t
>>>>> On Mon, 5 Dec 2005 07:02:09 -0500, Robert Story <[EMAIL PROTECTED]> said:
Robert> Yes, though the persistent store can be written at other times
Robert> too. The temporary switch to root would probably be needed in
Robert> other scenarios too (I think some pl
> On Mon, 5 Dec 2005 07:11:55 -0500, Robert Story <[EMAIL PROTECTED]> said:
Robert> My main concern is that configuration files that are
Robert> owned/writable by a non root-user degrades the security of the
Robert> system by effectively giving everyone with write access to the
Robert> files r
On Mon, 05 Dec 2005 12:32:13 + Dave wrote:
DS> On Mon, 2005-12-05 at 07:11 -0500, Robert Story wrote:
DS> > My main concern is that configuration files that are
DS> > owned/writable by a non root-user degrades the security
DS> > of the system by effectively giving everyone with write
DS> > acce
On Mon, 2005-12-05 at 07:11 -0500, Robert Story wrote:
> My main concern is that configuration files that are
> owned/writable by a non root-user degrades the security
> of the system by effectively giving everyone with write
> access to the files root access.
Does it? How?
(Hmmm... - perhaps you
pect that the agent's
> > configuration files would be owned by root, and not the
> > non-privileged user.
>
> But isn't it even more reasonable to expect that load/save of
> persistent config would "just work" for an agent with
> agentuser/agentgroup def
> It's still reasonable to expect that the agent's configuration files
TA> > would be owned by root, and not the non-privileged user.
TA>
TA> But isn't it even more reasonable to expect that load/save of persistent
TA> config would "just work" for an agen
On Mon, 05 Dec 2005 10:11:13 + Dave wrote:
DS> On Sun, 2005-12-04 at 08:32 -0500, Robert Story wrote:
DS> > I think the original idea for changing user/group was
DS> > to have reduced privileges while running. The primary advantage probably
DS> > being that scripts and such wouldn't r
RC> > run as root. It's still reasonable to expect
CRC> > that the agent's configuration files would be owned by root, and
CRC> > not the non-privileged user.
CRC>
CRC> Except that as snmpd shuts down it rewrites the persistent store as the
CRC> -u/-g u
On Sun, 2005-12-04 at 08:32 -0500, Robert Story wrote:
> I think the original idea for changing user/group was
> to have reduced privileges while running. The primary advantage probably being
> that scripts and such wouldn't run as root. It's still reasonable to expect
> that the agent's
oken and should be fixed.
>
> Can you expand on that? I think the original idea for changing
> user/group was to have reduced privileges while running. The
> primary advantage probably being that scripts and such wouldn't
> run as root. It's still reasonable to expect
> tha
ea for changing user/group was
to have reduced privileges while running. The primary advantage probably being
that scripts and such wouldn't run as root. It's still reasonable to expect
that the agent's configuration files would be owned by root, and not the
non-privileged user.
On Sun, 04 Dec 2005 00:15:49 +0100 Thomas wrote:
TA> [EMAIL PROTECTED] wrote:
TA> > From: Robert Story <[EMAIL PROTECTED]>
TA> >>Can anyone think of any objections to changing the group earlier?
TA> >>
TA> >>- It's new behaviour
TA> >>- It will change the ownership of files created by the agent (th
[EMAIL PROTECTED] wrote:
From: Robert Story <[EMAIL PROTECTED]>
Can anyone think of any objections to changing the group earlier?
- It's new behaviour
- It will change the ownership of files created by the agent (thus
possibly reducing the security of the agent; eg exposing info, non-
root u
Robert Story wrote:
On Thu, 01 Dec 2005 12:52:48 -0500 [EMAIL PROTECTED] wrote:
CRC> > The agentgroup has been processed, but that only 'remembers' the
CRC> > value. It isn't used until later, and unfortunately 'later' is
CRC> > after it has done
From: Robert Story <[EMAIL PROTECTED]>
> On Thu, 01 Dec 2005 12:52:48 -0500 [EMAIL PROTECTED] wrote:
> CRC> > The agentgroup has been processed, but that only 'remembers'
> CRC> > the value. It isn't used until later, and unfortunately
> CRC> >
On Thu, 01 Dec 2005 12:52:48 -0500 [EMAIL PROTECTED] wrote:
CRC> > The agentgroup has been processed, but that only 'remembers' the
CRC> > value. It isn't used until later, and unfortunately 'later' is
CRC> > after it has done the initial persistent s
tXperms token, so set actual
permissions, instead of assuming what is there is correct.
CRC> More research makes this look even weirder. The agent is seeing the
CRC> admingroup config token and properly processing it. If I `killall
CRC> snmpd`, the persistent store is rewritten with the desired g
> ...
> The agentgroup has been processed, but that only 'remembers' the
> value. It isn't used until later, and unfortunately 'later' is
> after it has done the initial persistent store save, which is
> why you see the current behavior. You could tr
(I started this on the -users list but it seems more appropriate here now.)
> > In http://sourceforge.net/mailarchive/message.php?msg_id=9547341
> > I asked how to set ownership of persistent files. I must have
> > gotten an answer (or figured it out) because my v5.1.1-bas
Rav wrote:
Please let me know what are the settings (i.e environment settings) I
should make so that these 2 snmpd process run on the same linux box and
each process gets different snmpd.conf files and run.
See http://www.freesnmp.com/net-snmp/faqs/#persistmulti
+Thomas
--
Thomas Anders (th
Hi,
What is meant by persistent file?
I want to run 2 snmpd processes, ofcourse with different port numbers in the same linux box.
I have one snmpd.conf in /etc/snmp/snmpd.conf for the first snmpd process.
I have second snmpd.conf in /home/rav/snmpd.conf for the second snmpd process.
Please
> On Thu, 16 Sep 2004 16:30:23 -0400 [EMAIL PROTECTED] wrote:
> CRC> I need someone other than root (which snmpd runs as) to be
> able to
> CRC> manipulate the persistent store (to add createUser
> directives). To that
> CRC> end, I've made the chan
On Wed, 25 Aug 2004 16:26:42 +0200 Thomas wrote:
TA> how is a non-root "agentuser" intended to work together with persistent
TA> storage (usually /var/net-snmp/snmpd.conf)?
TA>
TA> AFAICS, 5.1.2 snmpd creates /var/net-snmp/snmpd.conf as *root*
TA> *before* switching to
On Thu, 16 Sep 2004 16:30:23 -0400 [EMAIL PROTECTED] wrote:
CRC> I need someone other than root (which snmpd runs as) to be able to
CRC> manipulate the persistent store (to add createUser directives). To that
CRC> end, I've made the change below to the 5.1.1 version of read_config.
> Does your policy and/or environment
> permit the use of "sudo program-that-creates-users"
> to accomplish what you want
> without patching the sources?
I have a demi-god user but that user can't read and write files that are 600 root.root
as the persistent store i
Does your policy and/or environment
permit the use of "sudo program-that-creates-users"
to accomplish what you want
without patching the sources?
>
> From: [EMAIL PROTECTED]
> Date: 2004/09/16 Thu PM 04:30:23 EDT
> To: [EMAIL PROTECTED]
> Subject: Preserving attribt
roliferation of configuration
values.
> 1. Mode and user are obtained from configuration.
> 2. Unlink the file.
> 3. Write new persistent data to file.
Are you suggesting that we add new configure-time options (like PERSISTENT_MASK) to
specify the owner, group, and mode of pers
Better coding practice to minimize the potential for abuse:
1. Mode and user are obtained from configuration.
2. Unlink the file.
3. Write new persistent data to file.
Best Regards,
-Mike Slifcak
>
> From: [EMAIL PROTECTED]
> Date: 2004/09/16 Thu PM 04:30:23 EDT
> To: [EMA
I need someone other than root (which snmpd runs as) to be able to manipulate the
persistent store (to add createUser directives). To that end, I've made the change
below to the 5.1.1 version of read_config.c. I'm looking for some feedback before I
go to the trouble of getting
-Coders,
how is a non-root "agentuser" intended to work together with persistent
storage (usually /var/net-snmp/snmpd.conf)?
AFAICS, 5.1.2 snmpd creates /var/net-snmp/snmpd.conf as *root*
*before* switching to the "agentuser" uid. When shutting down, it
consequently fails to
> On Mon, 19 Jul 2004 16:34:38 -0500, [EMAIL PROTECTED] said:
Brian> We would like to separate the V3 username info (keys and
Brian> whatnot) out from the MIB data (psyslocation, psyscontact,
Brian> etc).
Brian> Is there a mechanism in place to do this already?
No, but it would be fairly e
We have a need to separate out the persistent data in
snmpd.conf (/var/net-snmp/snmpd.conf)
We would like to separate the V3 username info (keys and
whatnot) out from the MIB data (psyslocation, psyscontact, etc).
Is there a mechanism in place to do this already?
Would it be
91 matches
Mail list logo
