DigitalOcean 发了一个 Ticket 说 SNMP 攻击

2015-03-19 10:33:45 +08:00

用的是CENTOS,<del>记忆中根本没开过SNMP。</del>. 用监控宝开了SNMP.但是有用户名和强密码的。这种情况怎么处理

Please review the following abuse complaint and provide us with a resolution:

You appear to be running an open SNMP server at IP address X.X.X.X that participated in an attack against a customer of ours, generating large UDP responses to spoofed queries, with those responses becoming fragmented because of their size.

Please consider reconfiguring your SNMP-speaking device in one or more of these ways:

If you are an ISP, please also look at your network configuration and make sure that you do not allow spoofed traffic (that pretends to be from external IP addresses) to leave the network. Hosts that allow spoofed traffic make possible this type of attack.

Example SNMP responses sent to us by your device during the attack are given below.
Date/timestamps (far left) are UTC.

2015-03-17 19:54:53.942696 IP (tos 0x0, ttl 55, id 0, offset 0, flags [DF], proto UDP (17), length 1213) X.X.X.X > 31.186.250.x.3389: UDP, length 1185
0x0000: 4500 04bd 0000 4000 3711 2c46 68ec 8f74 E.....@.7.,Fh..t

(The final octet of our customer's IP address is masked in the above output because some automatic parsers become confused when multiple IP addresses are included. The value of that octet is "207".)

Nuclearfallout, Enterprises, Inc. (

(We're sending out so many of these notices, and seeing so many auto-responses, that we can't go through this email inbox effectively. If you have follow-up questions, please contact us at

Please note that generating multiple abuse complaints in a short period of time may lead to your account being suspended.

497 次点击
所在节点    VPS
3 条回复
2015-03-19 23:27:48 +08:00
关闭 snmp 服务即可
2015-03-20 00:16:11 +08:00
@Showfom 已经配置好了,开SNMP是给监控宝用的,发现没关public
2015-03-20 01:52:09 +08:00
@zzy8200 恩 然后你解释一下关掉即可

这是一个专为移动设备优化的页面(即为了让你能够在 Google 搜索结果里秒开这个页面),如果你希望参与 V2EX 社区的讨论,你可以继续到 V2EX 上打开本讨论主题的完整版本。

V2EX 是创意工作者们的社区,是一个分享自己正在做的有趣事物、交流想法,可以遇见新朋友甚至新机会的地方。

V2EX is a community of developers, designers and creative people.

© 2021 V2EX