Re: [midcom] security recommendations in MIDCOM MIB draft

[Lars Eggert <lars.eggert at nokia.com>]

On 2007-7-3, at 14:33, ext Juergen Quittek wrote:
> Now, Tim suggests to explicitly deprecate the use of (insecure)  
> previous
> versions of SNMP, for example with a phrase like
>
>  "Deployment of SNMP versions prior to SNMPv3 is NOT RECOMMENDED.
>   Instead it is RECOMMENDED to deploy SNMPv3 and to enable
>   cryptographic security."
>
> Are there any opinions about adding such a phrase to the security
> considerations?

This is a general applicability statement on the use of various SNMP  
versions and extensions, which IMO isn't for MIDCOM to make, at least  
not without prior review by the OPS area. But given the well-known  
problems with older versions of SNMP, maybe there already is a  
statement by the OPS area to that effect that the MIDCOM draft can  
simply point to?

Lars

Attachment: smime.p7s
Description: S/MIME cryptographic signature

_______________________________________________
midcom mailing list
midcom at ietf.org
https://www1.ietf.org/mailman/listinfo/midcom