Web/SNMP Management SmartSlot Card User’s Guide 67
Web/SNMP Management SmartSlot Card
Security
Security Features
Planning and
implementing
security features
As a network device that passes information across the network, the
Management Card is subject to the same exposure as other devices on
the network.
Use the information in this section to plan and implement the security
features appropriate for your environment.
Port assignments
If a Telnet,
FTP
, or Web server uses a non-standard port, a user must
specify the port when using the client interface, such as a Web browser.
The non-standard port address becomes an extra “password,” hiding
the server to provide an additional level of security. The
TCP
ports for
which the Telnet,
FTP
, and Web servers listen are initially set at the
standard “well known ports” for the protocols.To hide the interfaces, use
any port numbers from
5000 to 65535
.
For examples of what the commands would look like when the default
port numbers are changed, see
FTP Server, Telnet, and Web on page
28
.
User names,
passwords and
community names
All user names, passwords, and community names for
SNMP
are
transferred over the network as plain text. A user who is capable of
monitoring the network traffic can determine the user names and
passwords required to log into the Management Card’s Control Console
or Web interface as an Administrator or Device Manager. This security
limitation of the protocols affects any device using Telnet, a Web server,
or an
SNMP
version 1 agent.
