From owner-freebsd-questions Wed Jul 23 11:37:00 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA05980 for questions-outgoing; Wed, 23 Jul 1997 11:37:00 -0700 (PDT) Received: from chain-gateway.iafrica.com (n7u8ZzTyXX2KwW1giw+DSW9M7tvu2el0@chain-gateway.iafrica.com [196.31.1.126]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA05975 for ; Wed, 23 Jul 1997 11:36:55 -0700 (PDT) Received: from localhost (khetan@localhost) by chain-gateway.iafrica.com (8.8.5/8.8.5) with SMTP id UAA12304; Wed, 23 Jul 1997 20:36:30 +0200 (SAT) Date: Wed, 23 Jul 1997 20:36:29 +0200 (SAT) From: Khetan Gajjar X-Sender: khetan@chain-gateway.iafrica.com Reply-To: Khetan Gajjar To: John-David Childs cc: questions@FreeBSD.ORG Subject: Re: UCD-SNMPd In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 22 Jul 1997, John-David Childs wrote: >It's wide open in the sense that if you're using SNMPv1 to monitor/query >devices outside your local LAN control, your SNMP packets could be sniffed. >A modicum of security is provided by having different read and write >community strings. You could also use access lists/filters to control >packet source/destination. Of course, neither of these is foolproof. I'd like to remove the default public group, and basically only allow acccess from a couple of hosts. How do I do this ? --- Khetan Gajjar | khetan@iafrica.com (@ work) chain.iafrica.com/~khetan/ | khetan@os.org.za (@ play) PGP : finger khetan@chain.iafrica.com | FreeBSD site - www.freebsd.os.org.za UUNET Internet Africa Support | 0800-030-002 & help@iafrica.com