Comment on Monitor Your Network the GPL Way with LibreNMS
slazer2au@lemmy.world 1 month ago
I only have one issue with the post.
The conclusion says use long random SNMP community strings.
Ideally you should be using SNMPv3 because snmp1/2/2c are all clear text.
starkzarn@infosec.pub 1 month ago
You are absolutely correct, thank you. Sadly a bunch of devices still don’t support it, even in 2025 (like my microtik switch) for example. I will absolutely add a note about that though, thank you!
starkzarn@infosec.pub 1 month ago
Updated the post to reflect your feedback here. Thank you!
slazer2au@lemmy.world 1 month ago
Really? SNMPv3 was ratified in 1998. How does anyone take them seriously without it?
starkzarn@infosec.pub 1 month ago
And IPv6 was codified in RFCs and first addresses issued in 1999 but look where we are now. I’d bet your corporate network doesn’t use IPv6 still. It’s unfortunate, but sometimes the wheels of change are slow.
slazer2au@lemmy.world 1 month ago
My home, work, and mobile networks are all dual stacked.
This is a difference in kind. IPv4 live was extended with Nat and cgnat, but nothing equivalent came for snmp.