nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Warning: Cisco RW community backdoor.

From: Jared Mauch <jared () puck Nether net>
Date: Mon, 26 Feb 2001 21:48:12 -0500

        I was told by Cisco it should be RW.  (To override the builtin
one).

        I never ran a test w/ RO so was speaking from that
data.

        If you get some message about the "community/party" exists
or something like that, put this in:

no snmp-server view *ilmi

        It doesn't get saved in the config, so if you machine generate
your nvram:startup-config, you're ok, if you do not, you will
need to re-add it each time you reboot.

        - Jared

On Mon, Feb 26, 2001 at 06:43:40PM -0800, John Payne wrote:

On Mon, Feb 26, 2001 at 09:06:51PM -0500, Jared Mauch wrote:


    1) Workaround provided by James is incorrect.  You need RW not
RO.


No, you only need to specify RO... at least according to the tests I've
just run.  As I understand it you're overriding a built in community.


-- 
John Payne      http://www.sackheads.org/jpayne/    john () sackheads org
http://www.sackheads.org/uce/                    Fax: +44 870 0547954
        To send me mail, use the address in the From: header


-- 
Jared Mauch  | pgp key available via finger from jared () puck nether net
clue++;      | http://puck.nether.net/~jared/  My statements are only mine.
Previous By Date Next
Previous By Thread Next

Current thread: