password for BGP in clear-text in bird.conf file?

Ondrej Zajicek santiago at crfreenet.org
Thu Apr 23 19:23:33 CEST 2015


On Thu, Apr 23, 2015 at 10:05:21AM -0700, Christopher Jay Manders wrote:
> Hi,
> 
> I am not sure if this has been brought up before, but it is very sad that
> the password for BGP AUTH is in clear-text.
> 
> Is there anything in progress to rectify or discussion about this?

Hi

There is not much to discuss. Because the way how it is used, the
password must be in clear-text-recoverable form. The bird.conf
could be protected by unix access rights if necessary.

-- 
Elen sila lumenn' omentielvo

Ondrej 'Santiago' Zajicek (email: santiago at crfreenet.org)
OpenPGP encrypted e-mails preferred (KeyID 0x11DEADC3, wwwkeys.pgp.net)
"To err is human -- to blame it on a computer is even more so."
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: Digital signature
URL: <http://trubka.network.cz/pipermail/bird-users/attachments/20150423/7636c1ea/attachment.asc>


More information about the Bird-users mailing list