password encryption
David Rohleder
davro at ics.muni.cz
Thu May 12 17:22:50 CEST 2011
Make your bird.conf readable just for proper users (bird daemon and
admin)
There is hardly any way to "encrypt" password, because bird daemon must
decrypt it (ok, you can have separate file with encryption key, but you
are in the same situation with key file)
Pierre Rivenez píše v Čt 12. 05. 2011 v 17:15 +0200:
> The password is write in the file bird.conf in plain text.
> So any people who read the file have the password and can change the
> configuration.
> I would like to know if it's possible to encrypte the password in the
> configuration file
>
> PR
>
> ----- Mail Original -----
> De: "Martin Kraus" <martin.kraus at wujiman.net>
> À: "Pierre Rivenez" <pierre.rivenez at celeste.fr>
> Cc: bird-users at network.cz
> Envoyé: Jeudi 12 Mai 2011 16h33:40 GMT +01:00 Amsterdam / Berlin /
> Berne / Rome / Stockholm / Vienne
> Objet: Re: password encryption
>
> On Thu, May 12, 2011 at 04:18:47PM +0200, Pierre Rivenez wrote:
> > I use bird for the ospf
> > I would like to use encryption.
> > So I use a password for the ospf session, but the password is write
> in clear test in the file bird.conf
> > Is it a solution to encrypt this password in the configuration
> file.
>
> I guess the problem is that you'd have to have the key to the
> encryption in
> plain somewhere on the computer as well which kind of defeats the
> purpose of
> password encryption in the configuration file.
>
> mk
>
More information about the Bird-users
mailing list