SNMPv3-Version 3 of the Simple Network Management Protocol.
SNMPv3 is an interoperable standards-based protocol defined in RFCs
2273-2275.
SNMPv3 provides secure access to devices by a combination of authenticating
and encrypting packets over the network.
The security features provided in SNMPv3 are:
Message integrity-Ensuring that a packet has not been tampered with
in-transit.
Authentication-Determining the message is from a valid source.
Encryption-Scrambling the contents of a packet prevent it from being
seen by an unauthorized source.
Cisco Source
-----Message d'origine-----
De : Andras Bellak [mailto:[EMAIL PROTECTED]]
Envoyi : mercredi 9 janvier 2002 15:38
@ : [EMAIL PROTECTED]
Objet : RE: SNMP Community String [7:31373]
Try using snmpv3
-----Original Message-----
From: Andrew Larkins [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, January 09, 2002 5:53 AM
To: [EMAIL PROTECTED]
Subject: RE: SNMP Community String [7:31373]
Not to sure about that, but you can add access lists to control who is
allowed to use those SNMP strings
snmp-server community abcd rw 50
access-list 50 permit 1.2.3.4 0.0.0.255
-----Original Message-----
From: Kwame [mailto:[EMAIL PROTECTED]]
Sent: 09 January 2002 15:04 PM
To: [EMAIL PROTECTED]
Subject: SNMP Community String [7:31373]
Is there a way to encrypt the snmp community strings? The strings are
security holes since there are tools out there (I know of at least one)
capable of deriving the RW strings, given the RO strings. Once the RW
strings are known, you can download the config files and hack the
passwords
although I'm yet to see enable secret passwords cracked (I could be
wrong).
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=31399&t=31373
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
