Re: snmp & security
From: Steffen Dettmer (steffen@dett.de)Date: 11/15/01
- Previous message: vogt@hansenet.com: "AW: How to hard wire arp tables? (Newbie)"
- In reply to: tenfingers@ifrance.com: "snmp & security"
- Next in thread: Seth Arnold: "Re: snmp & security"
- Reply: Seth Arnold: "Re: snmp & security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 15 Nov 2001 11:43:34 +0100 From: Steffen Dettmer <steffen@dett.de> To: focus-linux@securityfocus.com Subject: Re: snmp & security Message-ID: <20011115114334.C12933@dx.net.de>
* tenfingers@ifrance.com wrote on Sat, Nov 10, 2001 at 19:24 +0100:
[...]
> so i would like to know the risks of having snmpd started
> is it possible to secure it ?
I've read a lot of insecurities. Of course firewall it as much
as possible and allow only one IP to connect. Some people
suggested to use cryptic community names to make scanner not
work. Maybe something like
[ucd-snmpd.conf]
com2sec xqsss2 192.168.1.123/32 public
group ROxqsss2 v1 monitor
group ROxqsss2 v2c monitor
group ROxqsss2 usm monitor
view v_xqsss2 included .1 80
access ROxqsss2 "" any noauth exact v_monitor none none
With xqsss2 as community. But I never found if this is secure or
not. Instead of ".1" you should specify as much of the MIB you
can, in that case no other MIBs should be requestable.
oki,
Steffen
-- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.
- Previous message: vogt@hansenet.com: "AW: How to hard wire arp tables? (Newbie)"
- In reply to: tenfingers@ifrance.com: "snmp & security"
- Next in thread: Seth Arnold: "Re: snmp & security"
- Reply: Seth Arnold: "Re: snmp & security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
