Hi Dave,

Please be nice;-) and give me more details on those two lines. I have no
clue what I suppose to do.

What data structure(s) or field(s) I should look into?
Or are you talking about snmpd.conf configuration?

Thank you very much for your support.
Emi

-----Original Message-----
From: dave.shield@googlemail.com [mailto:dave.shield@googlemail.com] On
Behalf Of Dave Shield
Sent: Friday, April 18, 2008 4:19 PM
To: Emi Yanagi
Cc: net-snmp-coders@lists.sourceforge.net
Subject: Re: SNMP-COMMUNITY-MIB security question

On 18/04/2008, Emi Yanagi wrote:
> It seems there could be a security hole in snmpCommunityTable. What if

a
> user who only has access to read-only community name "public", used it

to
> walk through snmpCommunityName, which would also populate the

read-write
> community name "private". Then the read-only user gained the

read-write
> community access.
>
> How do I prevent this security hole in my implementation?


By restricting access to the snmpCommunityTable.
Don't allow "untrusted" users to view the contents.

Dave

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference
Don't miss this year's exciting event. There's still time to save $100.
Use priority code J8TL2D2.
http://ad.doubleclick.net/clk;198757...un.com/javaone
_______________________________________________
Net-snmp-coders mailing list
Net-snmp-coders@lists.sourceforge.net
https://lists.sourceforge.net/lists/...et-snmp-coders