From owner-freebsd-net@FreeBSD.ORG Thu Apr 16 00:16:41 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DC093106566B for ; Thu, 16 Apr 2009 00:16:41 +0000 (UTC) (envelope-from bms@incunabulum.net) Received: from out2.smtp.messagingengine.com (out2.smtp.messagingengine.com [66.111.4.26]) by mx1.freebsd.org (Postfix) with ESMTP id AEE8C8FC15 for ; Thu, 16 Apr 2009 00:16:41 +0000 (UTC) (envelope-from bms@incunabulum.net) Received: from compute1.internal (compute1.internal [10.202.2.41]) by out1.messagingengine.com (Postfix) with ESMTP id 0FA7931BCD7; Wed, 15 Apr 2009 20:16:41 -0400 (EDT) Received: from heartbeat2.messagingengine.com ([10.202.2.161]) by compute1.internal (MEProxy); Wed, 15 Apr 2009 20:16:41 -0400 X-Sasl-enc: YwFo/jKi/OUpVm9kosXYphy0VJ1cPu96qkzjAXz2dwWO 1239841000 Received: from [192.168.123.18] (82-35-112-254.cable.ubr07.dals.blueyonder.co.uk [82.35.112.254]) by mail.messagingengine.com (Postfix) with ESMTPSA id 3C8853A76B; Wed, 15 Apr 2009 20:16:40 -0400 (EDT) Message-ID: <49E678E6.102@incunabulum.net> Date: Thu, 16 Apr 2009 01:16:38 +0100 From: Bruce Simpson User-Agent: Thunderbird 2.0.0.21 (Windows/20090302) MIME-Version: 1.0 To: =?UTF-8?B?0JDQu9C10LrRgdC10Lkg0JHQu9C40L3QutC+0LI=?= References: <2d934d80904150642r585049b4wadfdfc82a3d8c7fc@mail.gmail.com> <20090415144956.T15361@maildrop.int.zabbadoz.net> <2d934d80904150807p732bce43gc110fe6ae042507d@mail.gmail.com> In-Reply-To: <2d934d80904150807p732bce43gc110fe6ae042507d@mail.gmail.com> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit Cc: "Bjoern A. Zeeb" , freebsd-net Subject: Re: MD5 authentication in quagga X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 16 Apr 2009 00:16:42 -0000 Алексей Блинков wrote: > If modelling ideal situation, then: > > md5 password doesn`t match or empty, then peering must be closed... > > Now md5 working only for outgoing packets, not for input. And peering > not closed if password miss or not match. because bsd not check > incoming packets, i think... > I thought someone had fixed this ages ago? I seem to remember someone had merged some changes to what I'd originally done for Sentex from NetBSD... but I could be wrong. cheers, BMS