today categories: slam in salon security scripting gnu/linux os x win32 activeRenderer groupware
radioScan
or search:
© copyright 2002 by Marc Barrot
|
|
|
|
Monday, June 10, 2002 |
Live From Usenix Tutorial Sessions
The wireless connection just came up in our meeting room. I'm currently attending John Sellens' System And Network Monitoring tutorial
The tutorial so far focuses on the SNMP protocol, as a mean of polling or traping data out of systems to a central location. I had never used SNMP on a regular basis before, and just realised 3 things.- There are now very (too) informative agents for all kind of operating systems that deliver 'global' data on a computer status. SNMP is definitely not limited to routers and network devices.
- SNMP rides on UDP protocol ports 161 and 162, which mean that there is no guarantee that a manager will get an answer everytime it polls an agent, and that an agent issueing a trap will be heard every time, specially if the management is done from a 'far' remote location.
- Managing from outside a firewall is something that you do not (as in never, ever) want to do with SNMP v1, since all data, including SNMP passwords travel in the clear. SNMP v3 offers ways to encrypt all the datagrams, and is the protocol to use with remote monitoring.
I've just stressed this last point to John, who is going emphasize this in his 'SNMP' security chart after recess.
1:56:09 PM Google It!
|
|
|
|
June 2002 |
Sun |
Mon |
Tue |
Wed |
Thu |
Fri |
Sat |
|
|
|
|
|
|
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
|
|
|
|
|
|
Apr Aug |
|