STIGQter STIGQter: STIG Summary: Oracle Linux 6 Security Technical Implementation Guide Version: 1 Release: 17 Benchmark Date: 25 Oct 2019: The snmpd service must not use a default password.

DISA Rule

SV-64919r1_rule

Vulnerability Number

V-50713

Group Title

SRG-OS-999999

Rule Version

OL6-00-000341

Severity

CAT I

CCI(s)

Weight

10

Fix Recommendation

Edit "/etc/snmp/snmpd.conf", remove default community string "public". Upon doing that, restart the SNMP service:

# service snmpd restart

Check Contents

To ensure the default password is not set, run the following command:

# grep -v "^#" /etc/snmp/snmpd.conf| grep public

There should be no output.
If there is output, this is a finding.

Vulnerability Number

V-50713

Documentable

False

Rule Version

OL6-00-000341

Severity Override Guidance

To ensure the default password is not set, run the following command:

# grep -v "^#" /etc/snmp/snmpd.conf| grep public

There should be no output.
If there is output, this is a finding.

Check Content Reference

M

Target Key

2208

Comments