On Wed, Jul 18, 2012 at 4:16 PM, Gerhard Roth wrote: >> same here, wouldn't it be possible to match the ipsec.conf grammar and >> ignore the SNMPv3 naming a bit? >> >> auth hmac-sha1 authkey "fooobar" enc aes enckey "dkjdkj" >> - instead of - >> hmac sha authpass "foobar" cipher aes privpass "dkjdkj" >> >> or maybe authpass and encpass, but what does "priv" mean. > > > > So instead of > > user <name> [authpass <pass> hmac [MD5|SHA]] \ > [privpass <pass> cipher [DES|AES]] > > let's use > > user <name> [hmac-[md5|sha1] authkey <key>] \ > [enc [des|aes] enckey <key>] > > Is that ipsec.conf like enough? >
why weren't all the other _priv instances renamed to _encr? is there any value in keeping SNMP_MSGFLAG_PRIV and such around? uu_privkey looks a bif of an alien alongside uu_authkey.
