"authenticated tftp"

Tim Kientzle kientzle at acm.org
Fri Jul 25 13:55:20 PDT 2003

>>On Fri, 25 Jul 2003, 13:22-0400, Robert Watson wrote:
>>>Yeah, seems like an oxy-moron, but this is a legitimate question, I
>>>promise.  My linksys wireless router requires me to disable the admin
>>>password on it to tftp a firmware update to it--however, the Windows tftp
>>>client that Linksys ships appear to support some form of "Oh yeah, and
>>>here's a password".

I found some code that claims to implement this
extension (specifically for communicating with
a Linksys device).  Unfortunately, I couldn't find
any copyright or license for the code, so I can't
just pass it along.

However, it looks like it just attaches an
option called "password" whose value
is the unencrypted password.

RFC 2347 describes the format of TFTP options.
Looks like a few lines added to makerequest()
in tftp.c should handle it.  Plus a few additional
lines of code for the command-line option.  Should
be an evening's work for someone.

Good luck,


More information about the freebsd-current mailing list