FreeBSD Port: net-mgmt/net-snmp runs as root

Tobias Lott tlott at gamesnet.de
Sat Sep 19 22:02:44 UTC 2009


Hi Philip

Since net-snmp at default configuration runs as user root its a
Security Issue imho.

Well thats not the main Problem but a Changerequest (should I open a PR
for this?)

The main Reason im writing this is if I start snmpd with the user
nobody (-u) f.e. it "seems" there are Permission Problems with some
OID's.

snmpd.log:
Connection from UDP: [0.0.0.0]->[192.168.1.199]:-23573
Purging address from address cache: UDP:
[0.0.0.0]->[10.0.254.6]:-242Received SNMP packet(s) from UDP:
[0.0.0.0]->[192.168.1.199]:-23573 GET message --
HOST-RESOURCES-MIB::hrStorageUsed.1 kvm_openfiles: Permission denied
kvm_openfiles: /dev/mem: Permission denied

That snmpget Result: 502933

That Host has 2GB of Ram so its correct, so can I just ignore that error
message? For that I have to launch snmpd with -r which I rather would
not.

Should I create a PR for this one too?


Additionaly:

FreeBSD s4denie0425.gamesnet.de 7.2-STABLE FreeBSD 7.2-STABLE #3
r196954: Tue Sep  8 02:10:22 CEST 2009
root at s4denie0425.gamesnet.de:/usr/obj/usr/src/sys/S4DENIE0425  amd64


Cheers

-- 
Tobias Lott


More information about the freebsd-ports mailing list