Professional internal audit services provided internationally.

Auditing the Internet, E - Business
EVALUATING CONTROLS OVER SNMP
(Simple Network Management Protocol)

Review purpose of SNMP

Powerful management tool used to monitor, log and update network
Can be used to change network/server configuration
Routers can be changed via SNMP
Default configuration allows public access
Determine if SNMP software is properly employed and controlled

If not used, determine
(a) Why
(b) What tool is used to manage network
SNMP used to monitor network physical connections and traffic loads
Using network configuration diagram, determine if SNMP is managed by responsible person
Review default passwords for SNMP

Review format of community string passwords used for different LAN devices
Determine if default configuration allowing public access was reset to more secure values
Determine if special privilege access is required for sending powerful set command to SNMP agents from manager
Review controls over SNMP routers

Determine if filter policies for SNMP routers require incoming SNMP packets to be dropped to prevent an external system from changing configuration of network and host systems on local network using the set command
Review SNMP access to router ensures SNMP access sets are restricted to select authorized workstations
Router configuration information secured

Contact Us /Home/ Services/ Links/ Newsletter
Training/ Construction/ Risk/ CIA /Peer Review Audit Services ^Tel:615-790-9858 ^Fax: 209-797-7983 ^{PO Box} 681387, Franklin, TN 37068

Auditing the Internet, E - Business

Powerful management tool used to monitor, log and update network
Can be used to change network/server configuration
Routers can be changed via SNMP
Default configuration allows public access

If not used, determine
(a) Why
(b) What tool is used to manage network
SNMP used to monitor network physical connections and traffic loads
Using network configuration diagram, determine if SNMP is managed by responsible person

Review format of community string passwords used for different LAN devices
Determine if default configuration allowing public access was reset to more secure values
Determine if special privilege access is required for sending powerful set command to SNMP agents from manager

Router configuration information secured

Contact Us /Home/ Services/ Links/ Newsletter
Training/ Construction/ Risk/ CIA /Peer Review Audit Services ^Tel:615-790-9858 ^Fax: 209-797-7983 ^{PO Box} 681387, Franklin, TN 37068

Contact Us /Home/ Services/ Links/ Newsletter
Training/ Construction/ Risk/ CIA /Peer Review Audit Services ^Tel:615-790-9858 ^Fax: 209-797-7983 ^{PO Box} 681387, Franklin, TN 37068

Contact Us /Home/ Services/ Links/ Newsletter
Training/ Construction/ Risk/ CIA /Peer Review Audit Services ^Tel:615-790-9858 ^Fax: 209-797-7983 ^{PO Box} 681387, Franklin, TN 37068

Audit Services ^Tel:615-790-9858 ^Fax: 209-797-7983 ^{PO Box} 681387, Franklin, TN 37068

Auditing the Internet, E - Business

Powerful management tool used to monitor, log and update network Can be used to change network/server configuration Routers can be changed via SNMP Default configuration allows public access

If not used, determine (a) Why (b) What tool is used to manage network SNMP used to monitor network physical connections and traffic loads Using network configuration diagram, determine if SNMP is managed by responsible person

Review format of community string passwords used for different LAN devices Determine if default configuration allowing public access was reset to more secure values Determine if special privilege access is required for sending powerful set command to SNMP agents from manager

Router configuration information secured Contact Us /Home/ Services/ Links/ Newsletter Training/ Construction/ Risk/ CIA /Peer Review Audit Services Tel:615-790-9858 Fax: 209-797-7983 PO Box 681387, Franklin, TN 37068

Contact Us /Home/ Services/ Links/ Newsletter Training/ Construction/ Risk/ CIA /Peer Review Audit Services Tel:615-790-9858 Fax: 209-797-7983 PO Box 681387, Franklin, TN 37068

Contact Us /Home/ Services/ Links/ Newsletter Training/ Construction/ Risk/ CIA /Peer Review Audit Services Tel:615-790-9858 Fax: 209-797-7983 PO Box 681387, Franklin, TN 37068

Audit Services Tel:615-790-9858 Fax: 209-797-7983 PO Box 681387, Franklin, TN 37068

Powerful management tool used to monitor, log and update network
Can be used to change network/server configuration
Routers can be changed via SNMP
Default configuration allows public access

If not used, determine
(a) Why
(b) What tool is used to manage network
SNMP used to monitor network physical connections and traffic loads
Using network configuration diagram, determine if SNMP is managed by responsible person

Review format of community string passwords used for different LAN devices
Determine if default configuration allowing public access was reset to more secure values
Determine if special privilege access is required for sending powerful set command to SNMP agents from manager

Router configuration information secured

Contact Us /Home/ Services/ Links/ Newsletter
Training/ Construction/ Risk/ CIA /Peer Review Audit Services ^Tel:615-790-9858 ^Fax: 209-797-7983 ^{PO Box} 681387, Franklin, TN 37068

Contact Us /Home/ Services/ Links/ Newsletter
Training/ Construction/ Risk/ CIA /Peer Review Audit Services ^Tel:615-790-9858 ^Fax: 209-797-7983 ^{PO Box} 681387, Franklin, TN 37068

Contact Us /Home/ Services/ Links/ Newsletter
Training/ Construction/ Risk/ CIA /Peer Review Audit Services ^Tel:615-790-9858 ^Fax: 209-797-7983 ^{PO Box} 681387, Franklin, TN 37068

Audit Services ^Tel:615-790-9858 ^Fax: 209-797-7983 ^{PO Box} 681387, Franklin, TN 37068