Yeah, SNMP v2* is pretty icky because of the plaintext passwords ("community
strings"). The SNMP v2c spec was supposed to address that little snarl, but
everyone seems to be working on SNMP v3, which is supposedly "nearly out".
For SNMP v3 info, check out RFCs:
2271, 2272, 2273, 2274, and 2275
The site "http://www.snmp.com"; isn't updated very much so there must be a better
source for that info.
bill
Gary Mills wrote:
> I was asked to look into security issues with HPopenview SNMP Agent.
> Does any one have any experience or advice on any known problems with
> installing this agent on DMZ systems such as
> mail, web, ftp, firewall, etc... The idea is to monitor activity on these
> external system and send traps to the internal Hpopenview system. Iam not
> sure of the security of the agent or the daemons it may start.
>
> Gary Mills
> gary .
mills @
experian .
com
>
> ================================================================================
> To unsubscribe from this mailing list, please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> ================================================================================
--
Bill Burns
Senior Security Engineer
Netscape Communications Corp.
References:
-
SNMP agent
From: Gary Mills <gary .
mills @
experian .
com>
|
|
