I don't think anything is encrypted here, this is just peer authentication using a shared secret.
correct, my mistake :) On Tue, Jun 28, 2016 at 5:14 PM, Baptiste Jonglez < baptiste@bitsofnetworks.org> wrote:
On Tue, Jun 28, 2016 at 01:59:05PM +0200, Alexander Velkov wrote:
Hi Ondrej,
The first one is RIP request, rest are RIP responses. Quagga apparently do not sign RIP requests. They are optional, so it is not a big problem, but AFAIK they should be signed and verified in the same way as RIP requests.
This should provide some insights (the paragraphs about RIPv1):
http://www.nongnu.org/quagga/docs/docs-multi/RIP-Authentication.html
OK. Yes, the whole communication process to be encrypted sounds more adequate.
I don't think anything is encrypted here, this is just peer authentication using a shared secret.