Re: SNMP configuration

From: jpd (read_the_sig_at_do.not.spam.it.invalid)
Date: 12/30/04

• Next message: jpd: "Re: Wine setup on FreeBSD 5.3"
• Previous message: jpd: "Re: Firefox is really unstable on FreeBSD"
• In reply to: John Grimes: "SNMP configuration"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Date: 30 Dec 2004 13:38:03 GMT

Begin <10t58rsdfm5p286@corp.supernews.com>
On 2004-12-29, John Grimes <jegjr1@chesapeake.net> wrote:
> I know that there is a generic SNMP password on most systems. And I

Is there? I think you need to narrow that definition down a little:
There do exist ubiquitously used default community strings for SNMP
access. The kicker: This only goes on devices and agents that support
SNMP. SNMP is not universally supported by any measure[1], and no SNMP
support means no SNMP passw^Wcommunity strings.

> also though that for security reasons you want to change the password so
> to restrict access to your system via SNMP. Does anyone know the
> implementation of it in FreeBSD ? I would like to change it.

On FreeBSD, there is no built-in default SNMP support, but you can add
it by installing, for example, the net-snmp port. That port comes with
documentation that explains in detail how to configure it, including
setting community strings. But remember: The easiest way to secure
SNMP is by not enabling it. So no-action might be more secure than
any-action-at-all. Are you sure you want to go ahead and install SNMP?

[1] Example: switches. ``managed'' means ``configurable'' and ``snmp
    support''. If it's not managed it's just a dumb packet passer. If it
    is it'll keep statistics and such. Nevermind that you really don't
    want to build any network of more than two switches in size without
    it. You pay extra to get it.

-- 
  j p d (at) d s b (dot) t u d e l f t (dot) n l .

---

• Next message: jpd: "Re: Wine setup on FreeBSD 5.3"
• Previous message: jpd: "Re: Firefox is really unstable on FreeBSD"
• In reply to: John Grimes: "SNMP configuration"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Relevant Pages Re: SNMP community strings ... I restarted then snmp daemon and run a snmp query on the ... as well as from a windows machine running ... >> queried again using the new community strings, ... >> So I guess the answer to your question is that I restarted the daemon, ... (comp.security.unix) Re: SNMP community strings ... I restarted then snmp daemon and run a snmp query on the ... as well as from a windows machine running ... >> queried again using the new community strings, ... >> So I guess the answer to your question is that I restarted the daemon, ... (comp.security.unix) Re: SNMP community strings ... >> I'm stuck trying to change the snmp community strings on a unix box. ... So I guess the answer to your question is that I restarted the daemon, ... (comp.security.unix) Re: SNMP community strings ... >> I'm stuck trying to change the snmp community strings on a unix box. ... So I guess the answer to your question is that I restarted the daemon, ... (comp.security.unix) Re: SNMP community strings ... Dave ... | Let me clarify the question, I want to change the snmp community strings on ... | multiple workstations at the same time. ... (microsoft.public.win2000.general)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(17)