Check: OL6-00-000341
Oracle Linux 6 STIG:
OL6-00-000341
(in versions v2 r7 through v1 r9)
Title
The snmpd service must not use a default password. (Cat I impact)
Discussion
Presence of the default SNMP password enables querying of different system aspects and could result in unauthorized knowledge of the system.
Check Content
To ensure the default password is not set, run the following command: # grep -v "^#" /etc/snmp/snmpd.conf| grep public There should be no output. If there is output, this is a finding.
Fix Text
Edit "/etc/snmp/snmpd.conf", remove default community string "public". Upon doing that, restart the SNMP service: # service snmpd restart
Additional Identifiers
Rule ID: SV-209043r793764_rule
Vulnerability ID: V-209043
Group Title: SRG-OS-000480
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
Number | Definition |
---|---|
CCI-000366 |
The organization implements the security configuration settings. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
Number | Title |
---|---|
CM-6 |
Configuration Settings |