Add (D)TLS support by default to snmpd
Bug #1880724 reported by
Chaitanya T K
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
net-snmp (Debian) |
Fix Released
|
Unknown
|
|||
net-snmp (Ubuntu) |
Fix Released
|
Low
|
Sergio Durigan Junior | ||
Focal |
Won't Fix
|
Undecided
|
Unassigned | ||
Groovy |
Fix Released
|
Low
|
Sergio Durigan Junior |
Bug Description
The default configure options for SNMPd have openssl enabled but don't support (D)TLS which is essential to have authPriv support in SNMPv3, for this we have to compile the package with only changing the configure option, which is a pain. As OpenSSL is already enabled, I don't see any reason not to enable (D)TLS by default.
Observed in 18.04 (probably true in 20.04, don't see any change in the Ubuntu's git mirror of net-snmp)
CVE References
tags: | removed: server-triage-discuss |
Changed in net-snmp (Ubuntu): | |
importance: | Low → Wishlist |
Changed in net-snmp (Ubuntu Focal): | |
status: | New → Won't Fix |
no longer affects: | netsnmp |
Changed in net-snmp (Ubuntu Groovy): | |
importance: | Wishlist → Low |
Changed in net-snmp (Debian): | |
status: | Unknown → Fix Released |
To post a comment you must log in.
Ah..sorry, the default version might not have openssl enabled, I was looking at my changed version, and I had to patch net-snmp to support OpenSSL 1.1.0.