git.proxmox.com Git - mirror_frr.git/commit

author	Donald Sharp <sharpd@cumulusnetworks.com>
	Fri, 11 Mar 2016 19:27:11 +0000 (14:27 -0500)
committer	Donald Sharp <sharpd@cumulusnetworks.com>
	Sat, 8 Oct 2016 01:05:06 +0000 (21:05 -0400)
commit	3c8ab49fd1edd6c3f6f83abd9d4b8ae97c11ecde
tree	a45e90de1c4583abc82c1f025d32c9f57c48c068	tree
parent	1796a585f07b76a6855e32f339bfd7346432dd2d	commit \| diff

bgpd, lib: Remove RESTRICTED_NODE from code base

The RESTRICTED_NODE command is not used, introduces code
complexity and provides no additional levels of security.

The only way to get into RESTRICTED_NODE is to add, under
vty configuration the command 'anonymous restricted', and
then telnet to a daemon, provide a password, then type
'enable' and fail to enter the password three times.
Then the user can enter a very limited set of commands to
monitor bgp and only bgp behavior.

This commit removes both the RESTRICTED_NODE usage as well
as the lib/* usage of the code

Signed-off-by: Donald Sharp <sharpd@cumulusnetworks.com>

bgpd/bgp_route.c		diff \| blob \| blame \| history
bgpd/bgp_vty.c		diff \| blob \| blame \| history
confdefs.h	[new file with mode: 0644]	blob
conftest	[new file with mode: 0755]	blob
conftest.err	[new file with mode: 0644]	blob
lib/command.c		diff \| blob \| blame \| history
lib/command.h		diff \| blob \| blame \| history
lib/memory_vty.c		diff \| blob \| blame \| history
lib/vty.c		diff \| blob \| blame \| history