Re: SNMP set to public (security)

Vic S. Kelan · ‎03-23-2006

Hi!
I noticed my SNMP is set to public (get-community-name: public)
How do I determine if this enables read/write and also what is the security implication?

Can some one use this to break in to my system and for example shut it down since public is such a common community name? Could it be that easy?
Thanks for your comments !!!

Carlos Roberto Schimidt · ‎03-23-2006

Hi,

You can change community by editing /etc/snmp.conf. Have some explanation in this file.

Schimidt

Steven E. Protter · ‎03-23-2006

Shalom Vic,

SNMP, especially older versions are a security threat themselves. They can be abused and used to do bad things to systems.

public is a common community name but with well patched snmp software and good communication to your snmp control station, snmp can be made secure.

Rights are determined in the configuration file (see above) and by the settings on the station that controls monitoring.

This thread has more info:
http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=964387

An old vulnerability notice to help you understand the issues:
http://www.stanford.edu/~security/Advisories/99-0424.html

http://www.ciac.org/ciac/bulletins/j-022.shtml
http://www.remoteassessment.com/?op=varchive&vulnid=6132

Enjoy the reading.

:-)
SEP

Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Discussions

Forums

Discussions

Forums

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Re: SNMP set to public (security)

SNMP set to public (security)

Re: SNMP set to public (security)

Re: SNMP set to public (security)