Summary of SNMP security reinforcement methods

The predecessor of the Simple Network Management Protocol (SNMP) is the Simple gateway monitoring Protocol (SGMP), which is used to manage communication lines. Subsequently, SGMP was greatly modified, especially when SMI and MIB compliant with Internet definitions were added: the improved protocol was the famous SNMP. The goal of SNMP is to manage software and hardware platforms produced by many manufacturers on the Internet. Therefore, SNMP is greatly affected by the Internet standard network management framework. Now SNMP has been released to the third version, and its functions have been greatly enhanced and improved.
 
 
In the Security Evaluation of operators and financial industries, the remote security evaluation system is often used to scan for snmp-related vulnerabilities, the weak password "public" is used. The second reason is that the version is too low, which may cause security risks.
 
Next, we will introduce some experience in snmp reinforcement for your reference.
 
SNMP has a readable Password
 
This vulnerability is generally caused by the default public connection string of snmp, which can be changed to "public ".
 
Reinforcement method:
 
Windows
 
Run "services. msc" to find the snmp service item and change the snmp connection string in the corresponding tag.
 
Solaris
 
Solaris 10 System
 
Check the "rocommunity" section in the snmpd. conf file to check whether a weak password exists.
 
# More/etc/sma/snmp/snmpd. conf
 
Back up the file before modifying the file
 
# Cp-p/etc/sma/snmp/snmpd. conf/etc/sma/snmp/snmpd. conf_bak
 
Modify the file through vi
 
# Vi/etc/sma/snmp/snmpd. conf
 
Change rocommunity public to another connection string
 
Restart the SNMP service:
 
#/Etc/init. d/init. sma stop
 
#/Etc/init. d/init. sma start
 
Solaris 9
 
Configuration item name
 
Check the "rocommunity" section in the snmpd. conf file to check whether a weak password exists.
 
# More/etc/snmp/conf/snmpd. conf
 
Back up the file before modifying the file
 
# Cp-p/etc/snmp/conf/snmpd. conf/etc/snmp/conf/snmpd. conf_bak
 
Modify the file through vi
 
# Vi/etc/snmp/conf/snmpd. conf
 
Modify read-community public to another connection string
 
Restart the SNMP service: www.2cto.com
 
#/Etc/init. d/init. snmpdx stop
 
#/Etc/init. d/init. snmpdx start
 
AIX System
 
The default version of AIX is SNMPV2. In this version, you cannot directly modify the configuration file for reinforcement. You must change the SNMP version to v1.
 
View and back up the configuration file.
Vi/etc/snmpd. conf (vi modifies the weak public password)
3./usr/sbin/snmpv3_ssw-1 (the switch version is not snmpv1)
 
4. stopsrc-s snmpd; startsrc-s snmpd (restart the snmp service)