« MD5 SHA-0 双双被攻破 安全界一片血雨腥风 |
Main
| 步入 Linux 桌面时代 »
August 23, 2004
snmpv3 USM 配置
版权声明:可以任意转载,转载时请务必以超链接形式标明文章原始出处和作者信息及本声明。
https://windtear.net/archives/2004/08/23/000258.html
/etc/snmp/snmpd.conf
com2sec nomgmtsec 192.168.0.0/24 nomgmtuser
group nomgmtgroup usm nomgmtsec
access nomgmtgroup "" usm auth exact nomgmtviewro nomgmtviewrw nomgmtviewno
view nomgmtviewro included .1.3.6.1.4.1.xxxxx
pass .1.3.6.1.4.1.xxxxx.1.1 /bin/sh /path/httpd start
/var/net-snmp/snmpd.conf
createUser nomgmtuser MD5 "secret" DES
service snmp start
snmp 会自动执行解析这条命令
engineBoots 4
oldEngineID 0x800007e580de4e18393cf32a41
usmUser 1 3 0x800007e580de4e18393cf32a41 0x7573657200 0x7573657200 NULL .1.3.6.1.6.3.10.1.1.2 0x62f4922554a0831deac4b16692bfa366 .1.3.6.1.6.3.10.1.2.2 0x62f4922554a0831deac4b16692bfa366 0x00
第2/3串 是 user 的 asc 值
/usr/share/snmp/snmpd.conf
rwuser nomgmtuser
/usr/bin/net-snmp-config 是来自 net-snmp-devel 的 script 脚本 如 --create-snmpv3-user ......
# net-snmp-config --create-snmpv3-user -A MD5 -a secret nomgmtuser
adding the following line to /var/net-snmp/snmpd.conf:
createUser nomgmtuser MD5 "secret" DES
adding the following line to /usr/share/snmp/snmpd.conf:
rwuser nomgmtuser
snmpusm 是 snmpd 起来后通过 snmp 进行用户管理的接口
|
|
Posted by windtear at August 23, 2004 6:41 PM
