Countermeasures Against SNMP Enumeration
In last section we saw how we can enumerate SNMP. Since SNMP can reveal plenty of information that can be used for hacking, it is quite necessary to prevent SNMP enumeration. In this post we will learn how we can create a strong defense against SNMP enumeration.
The  best way to avoid SNMP enumeration is to remove SNMP agent from target  system or turn off the SNMP service. If that is not possible then follow  the following steps.
Enable the option in Group Policy Security option called Additional restrictions  for anonymous connections. Also restrict access to null session pipes,  null session shares and IPSec filtering.Additionally block access to  TCP/UDP ports 161.

No comments:
Post a Comment