Hi, On Wed, Feb 13, 2002 at 02:09:07PM -0600, Thomas_Goodman@3com.com wrote:
New NMC code has been posted on http://totalservice.commworks.com . The following NMC codes provide protection from possible Denial Of Service (DoS) attacks via SNMP. These concerns were raised by a CERT advisory issued today (see http://www.kb.cert.org/vuls/id/854306).
It still is vulnerarable as we found out. Just get the testsuite from http://www.ee.oulu.fi/research/ouspg/protos/testing/c06/snmpv1/ And you will find your NMC in a state where it answers pings but does not answer to snmp queries. Access lists work but are more a joke as with UDP you can easily spoof the source and destination address. HARCs 5.0.77 5.1.70 5.3.2 are stable and dont care about broken packets. Flo PS: Just because you're paranoid doesn't mean they AREN'T after you. -- flo@mediaways.net +49-5246-80-1185 Nine nineth on september the 9th Welcome to the new billenium