Simple Network Management Protocol (SNMP) service is not disabled
Description
Simple Network Management Protocol (SNMP) is used for collecting information from, and configuring network devices such as servers, printers, hubs, switches, and routers on an Internet Protocol (IP) network. SNMP is insecure because SNMP messages are not encrypted. Hackers can exploit the flaws in SNMP to retrieve basic system configuration information, network adapter information, firewall version thats installed and its settings, information about the underlying system and much more. To prevent. Fixing this misconfiguration will disable SNMP service in your network endpoints.
Severity
important
Category
Linux - Insecure Services
Resolution
Follow the below steps to resolve the misconfiguration.
Based on the service manager, run any of the following commands :
SysVinit based system : chkconfig snmpd off
Systemd based system : systemctl disable snmpd
Upstart based system : update-rc.d snmpd disable
Potential issues that may arise after applying the resolution
Altering the existing security setting may create the following impact in your network operations. Legacy protocols are present to support operations of legacy applications and services. Disabling them would cause those applications to stop functioning.
Does remediation require reboot?
No
Vulnerability Manager Plus tracks security configurations and remediate misconfigurations in your network systems from a centralized console. View a list of all the security misconfigurations detected by Vulnerability Manager Plus.
