From: SourceForge.net <no...@so...> - 2004-02-17 11:00:36
|
Bugs item #829119, was opened at 2003-10-23 14:59 Message generated for change (Settings changed) made by slif You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=112694&aid=829119&group_id=12694 Category: agent Group: None >Status: Closed >Resolution: Fixed Priority: 5 Submitted By: Nobody/Anonymous (nobody) Assigned to: Nobody/Anonymous (nobody) Summary: Access entry sec. model=any, taking precedence over defined Initial Comment: net_snmp5.0.9 createUser rouser1 MD5 my_password group grpnam2 usm rouser1 view all included .1 view vwnam2 excluded .1.3.6.1.2.1 1 1 1 1 1 1 #MIB-II view vwnam6 included .1.3.6.1.2.31 1 1 1 1 0 0 access grpnam2 "" usm auth exact all vwnam2 all access grpnam2 "" any auth exact vwnam6 vwnam6 all execute snmpset command: # snmpset -v3 -u rouser1 -a MD5 -A my_password -l authNoPriv localhost 1.3.6.1.2.1.1.5.0 s "newuser" SNMPv2-MIB::sysName.0 = STRING: newuser Following the steps in RFC3415, the first access entry should be picked since the first entry has security model "usm" specified. The entry with the security model "any" should be discarded. I would expect the above command to fail, not succeed. ---------------------------------------------------------------------- Comment By: Bob Rowlands - Sun Microsystems (browlands) Date: 2003-11-05 10:41 Message: Logged In: YES user_id=768592 Oops, patch 836568 fixes this, not 833216 ---------------------------------------------------------------------- Comment By: Bob Rowlands - Sun Microsystems (browlands) Date: 2003-11-05 10:38 Message: Logged In: YES user_id=768592 patch 833216 has been submitted to fix this problem in the V5-0-patches branch. I would have updated the bug directly, but can't attach a file unless I'm the submitter, and the submitter's anonymous. ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=112694&aid=829119&group_id=12694 |