Wednesday, May 7, 2014

Why do some of the most common & minor security practices go missing ?

I was hacking around with a huawei firewall confihuration review and notice that the snmp  agent was set and uses very weak security practices (   public/private communities for RO/RW no acls )


With a quick check from an external host & against the  public-facing interfaces, my hunch was  found to be correct.

 Look at this screenshot and tell me what's wrong ?






:)

Ken Felix
Freelance Network / Security Engineer
kfelix  ----a---t---socpuppets ---d---o---t---com

     ^      ^
=(  @   @ )=
          o
       /     \

4 comments: