OT: SNMP warning from CERT yesterday

From: Matt Wagner (miguknom@xxxxxxxxxxx)
Date: Wed Feb 13 2002 - 14:04:14 GMT-3

• Next message: Matt Wagner: "OT (again): SNMP warning from CERT yesterday"
• Previous message: Tony H: "Gigabit module on Cat5500"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Any thoughts on the SNMP warning from CERT yesterday? The recommendations
were for obvious things: only explicitly permit traffic; don't open LAN
protocols on your perimeter, take your management subnet out of band, etc.
One thing was troubling, though. X-Force says that Cisco routers configured
to filter SNMP traffic might fail to do so and permit a DoS attack. Huh?
Anybody have better information on less obvious steps to take? Turning off
SNMP on my private network seems a bit extreme since I'm using Network
Management Software.

Matt

• Next message: Matt Wagner: "OT (again): SNMP warning from CERT yesterday"
• Previous message: Tony H: "Gigabit module on Cat5500"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 20 2002 - 13:46:21 GMT-3