artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: af00a73) | patch
Tighten default security for snmpd(8). This is done by doing several
authormartijn <martijn@openbsd.org>
Sun, 20 Jun 2021 19:55:48 +0000 (19:55 +0000)
committermartijn <martijn@openbsd.org>
Sun, 20 Jun 2021 19:55:48 +0000 (19:55 +0000)
commitc92471afbdc490ed88a6a702556e7899e9c4b54e
tree492dc435df674485aa9b71cef24987d8c22f66adtree | snapshot
parentaf00a739e348c2423c81c094e9b48d21d6512195commit | diff
Tighten default security for snmpd(8). This is done by doing several
things:
- Only allow SNMPv3 by default. SNMPv1 and SNMPv2c can be enabled by
  setting the new snmpv* flags on the "liston on" statements.
- Remove the default community names. They're not secure to use.
- Change the default seclevel to enc.

Initial idea, help from and OK sthen@
usr.sbin/snmpd/parse.y diff | blob | history
usr.sbin/snmpd/snmpd.conf.5 diff | blob | history
usr.sbin/snmpd/snmpd.h diff | blob | history
usr.sbin/snmpd/snmpe.c diff | blob | history
usr.sbin/snmpd/usm.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim