[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Updating the MIB security guidelines

To: mibs@ops.ietf.org
Subject: RE: Updating the MIB security guidelines
From: "C. M. Heard" <heard@pobox.com>
Date: Sat, 28 Dec 2002 10:06:43 -0800 (PST)
In-reply-to: <7D5D48D2CAA3D84C813F5B154F43B15583D740@nl0006exch001u.nl.lucent.com>

On Sat, 28 Dec 2002, Wijnen, Bert (Bert) wrote:
[ ... ]
> > -- for all MIBs you must evaluate
> > 
> >    Some of the readable objects in this MIB module (including objects
> >    with a MAX-ACCESS clause of accessible-for-notify) may be considered
> 
> or maybe even better:
> 
>      Some of the readable objects in this MIB module (that is all objects
>      with a MAX-ACCESS other than not-accessible) may be considered

I recommend changing "that is all objects with to "i.e., objects with ..."
since the "all" might be read as "all ... may be considered" which is not 
what we mean.  The result would be:

       Some of the readable objects in this MIB module (i.e., objects
       with a MAX-ACCESS other than not-accessible) may be considered

> >    sensitive or vulnerable in some network environments.  It is thus
> >    important to control even GET and/or NOTIFY access to these objects
> >    and possibly to even encrypt the values of these objects when
> >    sending them over the network via SNMP.  These are the tables and
> >    objects and their sensitivity/vulnerability:
> > 
> >     <list the tables and objects and state why they are sensitive>

//cmh

References:
- RE: Updating the MIB security guidelines
  - From: "Wijnen, Bert (Bert)" <bwijnen@lucent.com>

Prev by Date: RE: Updating the MIB security guidelines
Next by Date: RE: Updating the MIB security guidelines
Previous by thread: RE: Updating the MIB security guidelines
Next by thread: Re: Updating the MIB security guidelines
Index(es):
- Date
- Thread