Hi Dave, Please be nice;-) and give me more details on those two lines. I have no clue what I suppose to do.
What data structure(s) or field(s) I should look into? Or are you talking about snmpd.conf configuration? Thank you very much for your support. Emi -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dave Shield Sent: Friday, April 18, 2008 4:19 PM To: Emi Yanagi Cc: [email protected] Subject: Re: SNMP-COMMUNITY-MIB security question On 18/04/2008, Emi Yanagi <[EMAIL PROTECTED]> wrote: > It seems there could be a security hole in snmpCommunityTable. What if a > user who only has access to read-only community name "public", used it to > walk through snmpCommunityName, which would also populate the read-write > community name "private". Then the read-only user gained the read-write > community access. > > How do I prevent this security hole in my implementation? By restricting access to the snmpCommunityTable. Don't allow "untrusted" users to view the contents. Dave ------------------------------------------------------------------------- This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone _______________________________________________ Net-snmp-coders mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/net-snmp-coders
