Configure SNMP Service to Use Only SNMPv3 or Newer
An XCCDF Rule
Description
Edit /etc/snmp/snmpd.conf, removing any references to rocommunity, rwcommunity, or com2sec.
Upon doing that, restart the SNMP service:
$ sudo service snmpd restart
Rationale
Earlier versions of SNMP are considered insecure, as they potentially allow unauthorized access to detailed system management information.
- ID
- xccdf_org.ssgproject.content_rule_snmpd_use_newer_protocol
- Severity
- Medium
- References
- Updated