password encryption

Ondrej Zajicek santiago at crfreenet.org
Thu May 12 23:50:09 CEST 2011


On Thu, May 12, 2011 at 05:15:15PM +0200, Pierre Rivenez wrote:
>    The password is write in the file bird.conf in plain text.
>    So any people who read the file have the password and can change the
>    configuration.

As other people wrote, the password have to be in plain text (or
somewhat decodable without knowledge of any other secret, which
is equivalent to plain text), because BIRD needs to know it.

Also note that the password cannot be used by other people to change
the configuration, as it is only used to 'sign' OSPF sessions.

-- 
Elen sila lumenn' omentielvo

Ondrej 'SanTiago' Zajicek (email: santiago at crfreenet.org)
OpenPGP encrypted e-mails preferred (KeyID 0x11DEADC3, wwwkeys.pgp.net)
"To err is human -- to blame it on a computer is even more so."
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 197 bytes
Desc: Digital signature
URL: <http://trubka.network.cz/pipermail/bird-users/attachments/20110512/6eb949d1/attachment-0001.asc>


More information about the Bird-users mailing list