Changing public community string in snmpd.conf & snmpdx.acl floods messages file with error messages

From: Alain Boudreault (alain.boudreault@videotron.ca)
Date: Thu Nov 30 2006 - 16:00:04 EST

• Next message: Andy Malato: "problems with RSC card"
• Previous message: Christopher L. Barnard: "Correction & More Info: clearing ALOM password on V210."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hello Gurus,

we have a security concern dealing with our SEA agent dealing with
community names...

We want to be able to change the comminity names in the config files so
that public, private does not show up anywhere.

The system is running Solaris 8 and the latest snmp patch is applied
(108669-32)

When we change the community setting we keep getting these errors:

Nov 27 11:36:14 test01 /usr/lib/snmp/snmpdx: session_open() failed for a
pdu received from localhost.32768
Nov 27 11:36:14 test01 /usr/lib/snmp/snmpdx: community_check();bad
community from localhost

These are the changes made to the snmpd.conf file:

      system-group-read-community test01tes01
      read-community test01test01
     
Changes made tp snmpdx.acl

      acl = {
              {
                      communities = test01test01
                      access = read-only
                      managers = *
              }

      }

Now, the only way to get rid of the error messages is to insert the
public entry back under communities

Has anybody been able to remove the public entry and get this working
with Solaris 8
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers

• Next message: Andy Malato: "problems with RSC card"
• Previous message: Christopher L. Barnard: "Correction & More Info: clearing ALOM password on V210."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:41:16 EDT