This FAQ-article explains how to protect your SNMP server against abuse.
- Edit the following file /etc/snmp/snmpd.conf. Please note that you need root rights to be able to edit this file.
- Make sure the value of AgentAddress is udp:127.0.0.1:161 Any additional AgentAddress entries should be removed or commented out.
Use the following command to restart the SNMP server when you have saved the changes to the config file.
service snmpd restart
Use the following command to check if the server is no longer vulnerable.
netstat -ln | grep 161 | grep -v 127.0.0.1This command should return no results.