[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Updating the MIB security guidelines

To: mibs@ops.ietf.org
Subject: Re: Updating the MIB security guidelines
From: Randy Presuhn <rpresuhn@dorothy.bmc.com>
Date: Fri, 27 Dec 2002 17:00:57 -0800 (PST)

Hi -

> Message-ID: <7D5D48D2CAA3D84C813F5B154F43B15583D6D3@nl0006exch001u.nl.lucent.com>
> From: "Wijnen, Bert (Bert)" <bwijnen@lucent.com>
> To: mibs@ops.ietf.org
> Subject: Updating the MIB security guidelines
> Date: Sat, 28 Dec 2002 00:35:55 +0100
...
> So based on the latest discussion between Mike Heard and myself and
> also taking some earlier input into consideration, how about this?
...

I think there should also be some mention of accessible-for-notify
objects and of notification types.

   1) sensitivity of notifications and their payloads

   2) DoS attacks (as described in some of the ADSL MIBs'
      security considerations sections) based on the
      conditions under which notifications are generated.

 ------------------------------------------------------
 Randy Presuhn          BMC Software, Inc.  SJC-1.3141
 randy_presuhn@bmc.com  2141 North First Street
 Tel: +1 408 546-1006   San José, California 95131  USA
 ------------------------------------------------------
 My opinions and BMC's are independent variables.
 ------------------------------------------------------

Follow-Ups:
- Re: Updating the MIB security guidelines
  - From: "C. M. Heard" <heard@pobox.com>

Prev by Date: Re: Updating the MIB security guidelines
Next by Date: Re: Updating the MIB security guidelines
Previous by thread: Re: Updating the MIB security guidelines
Next by thread: Re: Updating the MIB security guidelines
Index(es):
- Date
- Thread