From: Harihar Krishnan (harik@bma.gov.bh)
Date: Wed Jan 07 2004 - 02:24:59 EST
Hi,
I need some information on SNMP on our Tru64 v5.1. We have been provided the
following observation by security experts:-
Default public communities were found to be implemented on some SNMP agents
in the DMZ. This discloses important information about systems and can in
some cases be used to either crash or remotely manage systems. An SNMP
community string is basically the password that is needed to access an SNMP
agent. There are two flavours: read-only and read-write. Many devices will
use "public" as the default read-only community string and "private" as the
default read-write community string. It is recommended that you change these
to an alphanumeric string of at least 8 characters.
Their recommendation for the above is:-
Configure strong and difficult to guess communities. Same guidelines as for
choosing a password or login credentials on a system should be used here.
Put procedures in place to document and allow easy change of SNMP
credentials when security would be compromised. If SNMP is not being used as
a means to monitor systems it should be disabled.
I would appreciate some guidelines on how to achieve this. Thanks.
Harihar K
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:49:47 EDT