On Wed, Mar 18, 2020 at 6:30 AM Pushpa Thimmaiah
wrote:
> If two device has same snmpEngineID then will it impact on device security?
>
Two things off the top of my head:
1. The localized keys will be the same, meaning that if a localized key is
stolen it can be used for all devices with the same engineID;
2. A conforming SNMP manager may not be able to talk to multiple devices
with the same EngineID (because it will cache the engineBoots/engineTime,
but different agents will have different engineBoots/engineTime values).
Doing this can cause messages to be determined to be replay attacks
(because the engineID in use identifies a different system).
Bill
___
Net-snmp-coders mailing list
Net-snmp-coders@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/net-snmp-coders