Re: AIX SNMP Defaults

From: Troy Bollinger (troyat_private)
Date: Thu Feb 17 2000 - 06:57:06 PST

Next message: Dragos Ruiu: "Re: Packet Tracing (linux klog patch)"

Previous message: Nick FitzGerald: "Re: FireWall-1 FTP Server Vulnerability"
Maybe in reply to: harikiri: "AIX SNMP Defaults"
Next in thread: Michal Zalewski: "Re: AIX SNMP Defaults"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Quoting harikiri (harikiriat_private):
>
> It appears that on the above releases of AIX, the SNMP daemon is enabled
> by default and two community names are enabled with read/write privileges.
> The community names are "private" and "system", but are only allowed from
> localhost connections. Nevertheless, a local user may install an SNMP
> client, and modify sensitive variables.
>

This is fixed in AIX 4.3 with APAR IY04865 and was announced on the
Security_APARs mailing list from aixservat_private in January.

Customers wishing to subscribe to this list should send email to
aixservat_private with a subject of "Subscribe Security_APARs".


--
Troy Bollinger                            troyat_private
AIX Security Development        security-alertat_private
PGP keyid: 1024/0xB7783129 Troy's opinions are not IBM policy

Next message: Dragos Ruiu: "Re: Packet Tracing (linux klog patch)"
Previous message: Nick FitzGerald: "Re: FireWall-1 FTP Server Vulnerability"
Maybe in reply to: harikiri: "AIX SNMP Defaults"
Next in thread: Michal Zalewski: "Re: AIX SNMP Defaults"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:35:32 PDT