[quagga-dev 14895] Re: [PATCH 1/3] bgpd, lib: Remove RESTRICTED_NODE from code base

Paul Jakma paul at jakma.org
Fri Mar 11 21:48:06 GMT 2016


On Fri, 11 Mar 2016, Donald Sharp wrote:

> The RESTRICTED_NODE command is not used, introduces code
> complexity and provides no additional levels of security.
>
> The only way to get into RESTRICTED_NODE is to add, under
> vty configuration the command 'anonymous restricted', and
> then telnet to a daemon, provide a password, then type
> 'enable' and fail to enter the password three times.

No, that's not right. It's intended for use with another vty-config 
command that allows anonymous access - 'no login' I think.

You go straight into restricted mode.

regards,
-- 
Paul Jakma	paul at jakma.org	@pjakma	Key ID: 64A2FF6A
Fortune:
A successful [software] tool is one that was used to do something
undreamed of by its author.
 		-- S. C. Johnson




More information about the Quagga-dev mailing list