O'Reilly logo
  • johnson zhu thinks this is interesting:

Since read-only SNMP is enabled by default on many systems, it is an attacker's dream. An attacker can use SNMP to map out your entire network, find out MAC and IP address binding, and even find out exactly what hardware you are using and what software versions you are running. At attacker can then use that information to search vulnerability databases and analyze your network for vulnerable trust relationships.


Cover of Hardening Cisco Routers