lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
From: cdowns at drippingdead.com (cdowns)
Subject: ucd-snmp - arbitrary query ?

Morning all,
    I have a strange thing going on with ucd-snmp-4.2.5-8.73.1 on redhat 
7.3.

    My snmpd.conf is configured as so ( very simple ):

    ## snmpd.conf
    rocommunity  my_snmp_string dest_ip_address

    syscontact "cdowns@...ppingdead.com"
    syslocation "linux_box_x closet"

    # eof

    now I thought that this machine would only talk to dest_ip_address 
with ro permissions, Now for some reason when I query from another 
machine on the network:

    snmpwalk linux_box_x -c public

    I get a partial snmp response and the its hangs till the connection 
finally drops.

    If i specify -c 1 my_snmp_string as you normally would with snmpwalk 
I get no response, This is what I expect to happen from an arbitrary 
ipaddress.

    Anyone have any ideas why ucd-snmp would do this ?? There may be 
something I dont understand but this is definately not right.

    I know ive seen ucd-snmp threads on system.sys errors and this is 
where its dying as well.. maybe its still lingering around.

--- -Snip -----
system.sysORTable.sysOREntry.sysORDescr.9 = The management information 
definitions for the SNMP User-based Security Model.
system.sysORTable.sysOREntry.sysORUpTime.1 = Timeticks: (0) 0:00:00.00
system.sysORTable.sysOREntry.sysORUpTime.2 = Timeticks: (0) 0:00:00.00
system.sysORTable.sysOREntry.sysORUpTime.3 = Timeticks: (0) 0:00:00.00
system.sysORTable.sysOREntry.sysORUpTime.4 = Timeticks: (0) 0:00:00.00
system.sysORTable.sysOREntry.sysORUpTime.5 = Timeticks: (0) 0:00:00.00
system.sysORTable.sysOREntry.sysORUpTime.6 = Timeticks: (0) 0:00:00.00
system.sysORTable.sysOREntry.sysORUpTime.7 = Timeticks: (0) 0:00:00.00
system.sysORTable.sysOREntry.sysORUpTime.8 = Timeticks: (0) 0:00:00.00
system.sysORTable.sysOREntry.sysORUpTime.9 = Timeticks: (0) 0:00:00.00
Timeout: No Response from linux_box_x
[cdowns@...pping cdowns]$


    Thanks all.

    ~!>D

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ