nv-l
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [nv-l] CERT security advisory on multiple SNMP implementations

2002-02-16 10:51:01
Subject: RE: [nv-l] CERT security advisory on multiple SNMP implementations
From: "Frank W. Hansen" <fhansen AT enterpriseinnovations DOT com>
To: "Leslie Clark" <lclark AT us.ibm DOT com>, <nv-l AT lists.tivoli DOT com>
Date: Sat, 16 Feb 2002 09:51:01 -0600 
Leslie,

I would recommend the ACL Manager from CiscoWorks2000.  A great product.  We
have been doing some testing and are planning on using this in a very large
deployment.

Best Regards,

Frank W. Hansen
Tivoli Certified Enterprise Consultant



-----Original Message-----
From: Leslie Clark [mailto:lclark AT us.ibm DOT com]
Sent: Saturday, February 16, 2002 9:23 AM
To: nv-l AT lists.tivoli DOT com
Subject: Re: [nv-l] CERT security advisory on multiple SNMP
implementations


We had our round a couple of months ago, remember?

Now for the Cisco situation. What are people using for massively telneting
to devices and issuing commands? In my current situation I am looking at
implementing ACLs for a few thousand devices. I know there are commercial
products out there for running scripts on devices. Any recommendations?

Cordially,

Leslie A. Clark
IBM Global Services - Systems Mgmt & Networking
Detroit




                    netview@toddh.
                    net (Todd H.)        To:     nv-l AT lists.tivoli DOT com
                                         cc:
                    02/12/02 04:53       Subject:     [nv-l] CERT security
advisory on
                    PM                    multiple SNMP implementations







Oy...there goes the neighborhood.  NetView is clean, but a bunch of
devices in the average network are likely to be vulnerable:
        http://www.cert.org/advisories/CA-2002-03.html


I'm curious if anyone know how NetView got branded as not vulnerable
to trap format string attacks without the dependency on the security
e-Fix from 6.02 that came out in response to:
        http://www.cert.org/advisories/CA-2001-24.html

Perhaps because that vulnerability only existed if you launched
external scripts in event processing forked by ovactiond?

--
Todd H.
http://www.toddh.net/

---------------------------------------------------------------------
To unsubscribe, e-mail: nv-l-unsubscribe AT lists.tivoli DOT com
For additional commands, e-mail: nv-l-help AT lists.tivoli DOT com

*NOTE*
This is not an Offical Tivoli Support forum. If you need immediate
assistance from Tivoli please call the IBM Tivoli Software Group
help line at 1-800-TIVOLI8(848-6548)





---------------------------------------------------------------------
To unsubscribe, e-mail: nv-l-unsubscribe AT lists.tivoli DOT com
For additional commands, e-mail: nv-l-help AT lists.tivoli DOT com

*NOTE*
This is not an Offical Tivoli Support forum. If you need immediate
assistance from Tivoli please call the IBM Tivoli Software Group
help line at 1-800-TIVOLI8(848-6548)
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [nv-l] CERT security advisory on multiple SNMP implementations, Leslie Clark
Next by Date:  Re: [nv-l] CERT security advisory on multiple SNMP implementations, JEFFREY SANDEN
Previous by Thread:  Re: [nv-l] CERT security advisory on multiple SNMP implementations, Leslie Clark
Next by Thread:  Re: [nv-l] CERT security advisory on multiple SNMP implementations, JEFFREY SANDEN
Indexes:  [Date] [Thread] [Top] [All Lists]