RE: [Isms] #1: is it important to support anonymous user access toSNMP?

To: <isms at ietf.org>
Subject: RE: [Isms] #1: is it important to support anonymous user access toSNMP?
From: "David B Harrington" <dbharrington at comcast.net>
Date: Fri, 21 Oct 2005 08:47:27 -0400
Cc:
In-reply-to: <Pine.LNX.4.10.10510202256330.32707-100000@shell4.bayarea.net>
List-archive: <http://www1.ietf.org/pipermail/isms>
List-help: <mailto:isms-request@lists.ietf.org?subject=help>
List-id: Mailing list for the ISMS working group <isms.lists.ietf.org>
List-post: <mailto:isms@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/isms>, <mailto:isms-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/isms>, <mailto:isms-request@lists.ietf.org?subject=unsubscribe>
Reply-to: dbharrington at comcast.net
Sender: isms-bounces at lists.ietf.org
Thread-index: AcXWBVsCxh+NlerIRPa3Zej0MqvAZQAN0kUw

Hi,

> Consider a public facility (maybe a library) that has free
> network access. Consider management applications that could
> be used to determine the availability of some resource
> (such as a printer). In this situation, it would be
> impractical to give each user a unique identity so
> that they could use SNMP to determine the status
> of the printers. If the identities of the printers
> were not authenticated (or the communication not
> integrity checked) then someone could fake that
> a printer was unavailable so that they could
> have exclusive access.

The much simpler approach is to give the printer-monitoring
application installed on the public computers its own credentials -
the application is mapped to a securityName, and the application is
allowed to see specific portions of the SNMP data. 

Human users have anonymous access to the application, which has access
to the SNMP data and would presumably interpret the data and display
the interpretation in a form suitable for human consumption.

The users do not need anonymous access to SNMP, and the application
doesn't need to be anonymous either.

David Harrington
dbharrington at comcast.net




_______________________________________________
Isms mailing list
Isms at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/isms

References:
- RE: [Isms] #1: is it important to support anonymous user access toSNMP?
  - From: David T. Perkins

Prev by Date: RE: [Isms] #1: is it important to support anonymous user access toSNMP?
Next by Date: RE: [Isms] #1: is it important to support anonymous user accesstoSNMP?
Previous by thread: RE: [Isms] #1: is it important to support anonymous user access toSNMP?
Next by thread: RE: [Isms] #1: is it important to support anonymous user accesstoSNMP?
Index(es):
- Date
- Thread

RE: [Isms] #1: is it important to support anonymous user access toSNMP?

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.