Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Disable SNMP by default #1028

Open
cotosso opened this issue Jan 15, 2025 · 2 comments
Open

Disable SNMP by default #1028

cotosso opened this issue Jan 15, 2025 · 2 comments
Assignees
@cotosso
Labels
verified All test cases were verified successfully
Milestone
NethSecurity 8.5

Comments

@cotosso
Copy link
Contributor

cotosso commented Jan 15, 2025

SNMP is enabled by default on the system, potentially exposing sensitive information such as interfaces, and IP addresses, which could be exploited in an attack.

Proposed Solution

Disable SNMP by default in the system configuration.
Provide an option to enable SNMP only if explicitly required by the user, ensuring it is not active in standard deployments.
@cotosso cotosso moved this to ToDo 🕐 in NethSecurity Jan 15, 2025
@cotosso cotosso added this to the NethSecurity 8.5 milestone Jan 15, 2025
@Tbaile Tbaile moved this from ToDo 🕐 to In Progress 🛠 in NethSecurity Feb 20, 2025
@Tbaile Tbaile self-assigned this Feb 20, 2025
This was referenced Feb 20, 2025
Merged
Merged
@Tbaile
Copy link
Contributor

Tbaile commented Feb 21, 2025
edited
Loading

Image: https://github.com/NethServer/nethsecurity/actions/runs/13460119085/artifacts/2631237583

QA:

  • Update a 1.4.1, check that the service is still running snmpwalk -v 2c -c public 127.0.0.1
  • Fresh install, the command snmpwalk -v 2c -c public 127.0.0.1 shouldn't return anything

NOTE: command must be ran inside the unit.

@Tbaile Tbaile removed their assignment Feb 21, 2025
@Tbaile Tbaile added the testing Packages are available from testing repositories label Feb 21, 2025
@nethbot nethbot moved this from In Progress 🛠 to Testing in NethSecurity Feb 21, 2025
@gsanchietti gsanchietti self-assigned this Mar 3, 2025
@cotosso cotosso assigned cotosso and unassigned gsanchietti Mar 3, 2025
@cotosso
Copy link
Contributor Author

cotosso commented Mar 3, 2025

  1. Update a 1.4.1, check that the service is still running snmpwalk -v 2c -c public 127.0.0.1 : VERIFIED

  2. Fresh install, the command snmpwalk -v 2c -c public 127.0.0.1 shouldn't return anything : VERIFIED

Image

@cotosso cotosso added verified All test cases were verified successfully and removed testing Packages are available from testing repositories labels Mar 3, 2025
@nethbot nethbot moved this from Testing to Verified in NethSecurity Mar 3, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@cotosso cotosso

Labels
verified All test cases were verified successfully
Projects
NethSecurity
Status: Verified
Milestone
NethSecurity 8.5
Development

No branches or pull requests
3 participants
@gsanchietti @cotosso @Tbaile