it's here
Valdis.Kletnieks at vt.edu
Valdis.Kletnieks at vt.edu
Tue Feb 12 19:33:16 UTC 2002
On Tue, 12 Feb 2002 14:22:32 EST, Sean Donelan said:
> ASN.1 is pretty cool, but I've been wondering are there that
> many ISPs which allow external SNMP access to their equipment?
> SNMP is a UDP management protocol, and even under the best of
> conditions, accepting packets from out of the blue isn't a good
> idea.
The *real* problem is that many *host* systems (Solaris, SGI, AIX,
etc) have SNMP enabled by default. And remember that hosts outnumber
routers by a considerable margin.
The SANS Top20 listed SNMP as a "turn it off". It was in the Top10 list
before that.
Can I stop banging my head against the wall yet?
--
Valdis Kletnieks
Computer Systems Senior Engineer
Virginia Tech
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20020212/0f08e35b/attachment.sig>
More information about the NANOG
mailing list