SNMP server configured without communities

Risk Level: Low risk vulnerability  Low

Check or Attack Name: snmp_comm

Platforms: SNMP
Description:

SNMP was found without communities specified. The SNMP Public information may contain sensitive information that can be used to compromise computer systems.

Remedy:

If you need SNMP for network management, make sure it is properly configured with private community names. If SNMP is not required, disable the service:

Windows: To disable SNMP:

  1. Open the Services control panel. From the Windows NT Start menu, select Settings, Control Panel, Services.
  2. From the Services list, select SNMP.
  3. Click Stop.

Unix: Disable SNMP if it is not needed. If SNMP is started from the rc script, comment it out as appropriate for your operating system.

As an example for disabling SNMP under Solaris 2.6, execute the following commands:

# /etc/init.d/init.snmpdx stop
# mv /etc/rc3.d/S76snmpdx /etc/rc3.d/DISABLED_S76snmpdx

References:

X-Force Logo
Know Your Risks