April 2011
Intermediate to advanced
432 pages
11h 1m
English
book
CMS Security Handbook: The Comprehensive Guide for WordPress®, Joomla!®, Drupal™, and Plone®
by Tom Canavan
Content preview from CMS Security Handbook: The Comprehensive Guide for WordPress®, Joomla!®, Drupal™, and Plone®Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
Securing SNMP
Simple Network Management Protocol (SNMP) allows a machine (such as a server) to communicate its status to an application. Things that can be communicated from servers typically include temperature of the machine, the speed and operation of cooling fans, the output of the power supplies, and more.
An administrator can remotely manage the server using SNMP. This is a typical setup in many hosting situations where the administrators are physically present in the data center. Many hardware manufacturers such as Dell, Hewlett-Packard, IBM, and others support this protocol, and offer tools to monitor and manage servers.
Overall, SNMP can be considered a weakness, and should be shut off if it's not in use. However, if you are renting a server from a hosting company or a co-location facility, you likely won't be able to shut this protocol off on your own. What you want to be sure of, however, is that if in use, it's configured as securely as possible.
One classic weakness is that the Community string is often left at public. In essence, the Community string is the password to the system. With it, you can read and write to the machine in question, and because default passwords are prevalent in the computer industry, chances are good that the SNMP password is set to public on many machines out there today.
SNMP has two parts that you'll interact with:
- The Management Information Base (MIB) contains the description and controls for various devices in the server, networking ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.