[ Sorry for the delay in following up on this ] > 1. To my understanding, PAM modules require username/password pair to > provide authentication to local accounts. Passwords are not visible > verbatim at the SNMP Agent's end (it is transmitted in some hashed > format).
Not really relevant to Wes' alternative authentication mechanism, but one minor correction - SNMPv3/USM doesn't actually pass the password between client and agent at all. Instead it's used to calculate a "digital checksum" for the request, and it's this checksum that's included in the packet. The receiving end will also calculate the checksum (using the same password once again), and compare this to the version received to make sure they match. But you can't get from the checksum back to the password, and the password isn't actually transmitted in any form. [Apart from when manipulating passwords via the USM tables, but that's slightly different!] Dave ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://productguide.itmanagersjournal.com/ _______________________________________________ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/listinfo/net-snmp-users
