password for BGP in clear-text in bird.conf file?
Ondrej Zajicek
santiago at crfreenet.org
Thu Apr 23 19:23:33 CEST 2015
On Thu, Apr 23, 2015 at 10:05:21AM -0700, Christopher Jay Manders wrote:
> Hi,
>
> I am not sure if this has been brought up before, but it is very sad that
> the password for BGP AUTH is in clear-text.
>
> Is there anything in progress to rectify or discussion about this?
Hi
There is not much to discuss. Because the way how it is used, the
password must be in clear-text-recoverable form. The bird.conf
could be protected by unix access rights if necessary.
--
Elen sila lumenn' omentielvo
Ondrej 'Santiago' Zajicek (email: santiago at crfreenet.org)
OpenPGP encrypted e-mails preferred (KeyID 0x11DEADC3, wwwkeys.pgp.net)
"To err is human -- to blame it on a computer is even more so."
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: Digital signature
URL: <http://trubka.network.cz/pipermail/bird-users/attachments/20150423/7636c1ea/attachment.asc>
More information about the Bird-users
mailing list