SNMPv3-Version 3 of the Simple Network Management Protocol. SNMPv3 is an interoperable standards-based protocol defined in RFCs 2273-2275. SNMPv3 provides secure access to devices by a combination of authenticating and encrypting packets over the network.
The security features provided in SNMPv3 are: Message integrity-Ensuring that a packet has not been tampered with in-transit. Authentication-Determining the message is from a valid source. Encryption-Scrambling the contents of a packet prevent it from being seen by an unauthorized source. Cisco Source -----Message d'origine----- De : Andras Bellak [mailto:[EMAIL PROTECTED]] Envoyi : mercredi 9 janvier 2002 15:38 @ : [EMAIL PROTECTED] Objet : RE: SNMP Community String [7:31373] Try using snmpv3 -----Original Message----- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 09, 2002 5:53 AM To: [EMAIL PROTECTED] Subject: RE: SNMP Community String [7:31373] Not to sure about that, but you can add access lists to control who is allowed to use those SNMP strings snmp-server community abcd rw 50 access-list 50 permit 1.2.3.4 0.0.0.255 -----Original Message----- From: Kwame [mailto:[EMAIL PROTECTED]] Sent: 09 January 2002 15:04 PM To: [EMAIL PROTECTED] Subject: SNMP Community String [7:31373] Is there a way to encrypt the snmp community strings? The strings are security holes since there are tools out there (I know of at least one) capable of deriving the RW strings, given the RO strings. Once the RW strings are known, you can download the config files and hack the passwords although I'm yet to see enable secret passwords cracked (I could be wrong). Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=31399&t=31373 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]