mailing list archives
AIX SNMP Defaults
From: harikiri () ATTRITION ORG (harikiri)
Date: Tue, 15 Feb 2000 18:58:06 -0600
Following on from Michael Zalewski's recent SNMP post, here's an issue i
noted on two AIX systems.
NOTE: This was seen on both AIX 4.3 and 4.2.
It appears that on the above releases of AIX, the SNMP daemon is enabled
by default and two community names are enabled with read/write privileges.
The community names are "private" and "system", but are only allowed from
localhost connections. Nevertheless, a local user may install an SNMP
client, and modify sensitive variables.
Excerpt from /etc/snmpd.conf:
# 2. Set the community names and access privileges for hosts that can make
# requests of this snmpd agent. Define these restrictions as follows:
# community <name> <address> <netmask> <permissions> <view name>
community private 127.0.0.1 255.255.255.255 readWrite
community system 127.0.0.1 255.255.255.255 readWrite 1.17.2
Re: perl-cgi hole in UltimateBB by Infopop Corp. Kevin Hillabolt (Feb 15)
Re: perl-cgi hole in UltimateBB by Infopop Corp. Jordan Ritter (Feb 16)
Packet filter logging: MAC & TCP flags Jens Hektor (Feb 15)
Re: perl-cgi hole in UltimateBB by Infopop Corp. Irwin Lazar (Feb 17)
Re: perl-cgi hole in UltimateBB by Infopop Corp. Randal L. Schwartz (Feb 17)