Re: HP-UX SNMP daemon vulnerability

[secure () HPCHS CUP HP COM (HP S/W Security Team)]

To whom it may concern:

The /etc/SnmpAgent.d/snmpd.conf file permission problem can be
solved by installing PHSS_21046.

Older versions of Emanate Master Agents (pre PHSS_17945) were
temporarily moving snmpd.conf to /tmp and re-creating
/etc/SnmpAgent.d/snmpd.conf using the current umask set for root.

The code has been changed to preserve the file access rights.

The Master Agent log file(s) are still created using the current
umask if the files are not present, else the previous permissions
are preserved.

The following steps should be performed:

1) install PHSS_21046
2) chmod 600 /etc/SnmpAgent.d
3) chmod 600 /var/adm/snmpd.log

Thank you.

HP S/W Security Team
Cupertino, CA

--