Re: snmp

• Previous message: Hiten Pankhania: "RE: snmp"
• In reply to: R. DuFresne: "Re: snmp"
• Next in thread: R. DuFresne: "Re: snmp"
• Reply: R. DuFresne: "Re: snmp"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: "R. DuFresne" <dufresne@sysinfo.com>
Date: Mon, 27 Sep 2004 17:19:14 -0500

On Fri, 2004-09-24 at 15:39, R. DuFresne wrote:
> You start by getting yer "get out of jail free card" from mgt. If you
> lack that, you are likely to get fired and then prosecuted.

I didn't read it like you did. It seemed to me that Juan wanted a tool
that lists some info retrieved via SNMP Gets. With that list we would
approach management, showing that you can query interface tables, etc,
with a community string of "public".

I didn't think that he wanted to "break into" and systems, or otherwise
"pentest" it (even though he used that word in his request. Improper use
of "pentest" in my book).

I don't think he needs management approval or a JOOJF card to just list
some stuff with snmpwalk. After all, the information is "public", right?

As long as he doesn't circumvent counter-measures he should be fine.
After all, he is the one responsible for security in his company. He
would be one handing out the JOOJF cards ;)

Cheers,
Frank

• application/pgp-signature attachment: This is a digitally signed message part

• Previous message: Hiten Pankhania: "RE: snmp"
• In reply to: R. DuFresne: "Re: snmp"
• Next in thread: R. DuFresne: "Re: snmp"
• Reply: R. DuFresne: "Re: snmp"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]