Hello all-

I am looking through some ISS IS reports and finding that some HP-UX servers are using SNMPv1 and v2; which is showing up as a "High" level vulnerability and susceptible to attack. I know that if SNMP is to be used then SNMPv3 - which as I understand it has authentication and encryption may be the way to go - but has anyone here done that yet?

I have heard from out IT community that SNMPv3 would be a pain to migrate and that once an upgrade is started, all nodes on the network that use SNMP need to be upgraded at around the same time, otherwise they will be cut off - is this true? Is there better way to secure this service or is it best to just disable SNMP?

Also IT says they use SNMP to monitor network traffic - mostly for performance and "hearbeat" service from other nodes, like servers.

Thoughts?

Thanks!