Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
Home -> Community -> Usenet -> c.d.o.server -> Re: snmp security question
Hello Michael,
disable the snmp listener part by
lsnrctl dbsnmp_stop
And then have it checked again.
Regards,
Martin
Michael Norbert wrote:
>
> Hello
>
> Corporate security just sent me this, I'm wondering if someone can
> shed some light for me. I don't have the dbsnmp sub agent running on
> any of my machines, but it looks like I need to do more.
>
> thanks
> mike
> michaelnorbert_at_hotmail.com
>
> > A brief security review of system xxx.xxx.xxx.xx indicates that you have
> > a poorly configured SNMP service:
> >
> > ====================================
> > SNMP Checks
> > --------------------------------------------------------------------------
> ------
> > The following 1 community names were found, and have read access :
> > public
> >
> > The following writeable communities were found:
> > public
> >
> > The MIB2 mib is present.
> >
> > System description: HP-UX xxxxx B.11.00 U 9000/800
> > System contact:
> > System name: xxxxx
> > System location:
> > ====================================
> >
> > Many systems have SNMP enabled by a default install.
> > If you do not require SNMP - you should disable it.
> > If you do require SNMP - you must secure it properly, including not
> > having "public" as the password.
> >
> > Since you are seeking SSH access, I will grant your request, however,
> > someone should be looking into the SNMP service.
Received on Wed Mar 20 2002 - 03:51:42 CST