Date: Tue, 14 Jul 1998 09:32:53 -0400 (EDT) From: "Christopher G. Petrilli" <petrilli@dworkin.amber.org> To: Espen Torseth <Espen.Torseth@sds.no> Cc: freebsd-security@FreeBSD.ORG Subject: RE: Large-scale scan of SNMP ports Message-ID: <Pine.BSF.3.96.980714093140.22330A-100000@dworkin.amber.org> In-Reply-To: <81A91106E131D111BA8500608C23A6620CDFF8@nt1gj.da.posten.no>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 14 Jul 1998, Espen Torseth wrote: > There is the possibility that someone has started "auto-discovery" in > HP-OpenView, > CA UniCenter, etc. and given the wrong net-adress/subnet-mask. This has > happend > before, and will happen again... Also, last time I used HPOV, by default it scanned 0.0.0.0/0, meaning EVERYTHING in the world. I know this because *I* accidentally did this... fortuately it was behind a firewall :-) But this can be a common problem, what I would recommend is that unless there's some reason, you should block all SNMP traffic at your router, in BOTH directions (to prevent yourself from succumbing to potential problems). Chris -- | Christopher Petrilli | petrilli@amber.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.980714093140.22330A-100000>