Problems with net/net-snmp on 5.2-RELEASE?
Robert Watson
rwatson at freebsd.org
Thu Jan 15 15:40:54 PST 2004
On Thu, 15 Jan 2004, Damian Gerow wrote:
> Thus spake Damian Gerow (freebsd at coal.sentex.ca) [15/01/04 13:51]:
> : I'm having troubles getting net/net-snmp working on 5.2-RELEASE -- I've
> : tried both 5.1 and 5.0.9, and both are exhibiting the same behaviour. This
> : is with 5.0.9 (communities changed to protect the innocent):
>
> Whoops. Found the problem -- the default install of 5.2 doesn't appear
> to mount /proc by default. Mounted, problem (mostly) fixed. Still have
> some permission issues, but those I can handle.
Hmm. Do you have any idea why the SNMP agent needs access to procfs?
We've been trying to deprecate use of procfs due to long-standing security
issues with the procfs approach (just look at the vulnerability lists for
FreeBSD, Linux, and Solaris to see why...) There are some services in
procfs not found using the other interfaces, but frequently applications
can get access to everything they need using either libkvm (which uses
sysctl()), or using ptrace().
Robert N M Watson FreeBSD Core Team, TrustedBSD Projects
robert at fledge.watson.org Senior Research Scientist, McAfee Research
More information about the freebsd-current
mailing list