Why is Mint trying (and failing) to connect to other devices via SNMP?
Forum rules
Before you post read how to get help. Topics in this forum are automatically closed 6 months after creation.
Before you post read how to get help. Topics in this forum are automatically closed 6 months after creation.
Why is Mint trying (and failing) to connect to other devices via SNMP?
Hey all,
Fairly new install of LMDE on my laptop.
Happened to be looking at the log outputs on my old APC UPS I have attached to my server on the same subnet after some power fluctuations.
In the logs of the unit I find several entries where it states the IP associated with my laptop has made several attempts to connect to the device via SNMP and has failed. Four attempts in a row each time, seemingly at boot time for the laptop.
It seems very fishy to me.
I can't find any references to SNMP or the IP of the APC unit in the laptops system logs.
Anyone know what is going on?
Fairly new install of LMDE on my laptop.
Happened to be looking at the log outputs on my old APC UPS I have attached to my server on the same subnet after some power fluctuations.
In the logs of the unit I find several entries where it states the IP associated with my laptop has made several attempts to connect to the device via SNMP and has failed. Four attempts in a row each time, seemingly at boot time for the laptop.
It seems very fishy to me.
I can't find any references to SNMP or the IP of the APC unit in the laptops system logs.
Anyone know what is going on?
Last edited by LockBot on Wed Dec 28, 2022 7:16 am, edited 1 time in total.
Reason: Topic automatically closed 6 months after creation. New replies are no longer allowed.
Reason: Topic automatically closed 6 months after creation. New replies are no longer allowed.
Corsair 1000D, Threadripper 3960x, Asus ROG Zenith II, 64GB, Samsung 990 Pro, Geforce RTX 4090, 42" LG C3, 2x Dell U2412M, Schiit Bifrost Multibit DAC
Server: AMD EPYC 7543(32C/64T), SuperMicro H12SSL-NT, 512GB RAM, 192TB ZFS
Server: AMD EPYC 7543(32C/64T), SuperMicro H12SSL-NT, 512GB RAM, 192TB ZFS
-
- Level 20
- Posts: 12334
- Joined: Sun Aug 09, 2015 10:00 am
Re: Why is Mint trying (and failing) to connect to other devices via SNMP?
You can try snmp connect to other devices ,on your localhost and find if it's a problem with SNMP in general or only while connection to the UPS.
If I have helped you solve a problem, please add [SOLVED] to your first post title, it helps other users looking for help.
Regards,
Deepak
Mint 21.1 Cinnamon 64 bit with AMD A6 / 8GB
Mint 21.1 Cinnamon AMD Ryzen3500U/8gb
Regards,
Deepak
Mint 21.1 Cinnamon 64 bit with AMD A6 / 8GB
Mint 21.1 Cinnamon AMD Ryzen3500U/8gb
-
- Level 20
- Posts: 12334
- Joined: Sun Aug 09, 2015 10:00 am
Re: Why is Mint trying (and failing) to connect to other devices via SNMP?
You can try snmp connect to other devices ,on your localhost and find if it's a problem with SNMP in general or only while connection to the UPS.
https://www.google.com/url?sa=t&source= ... 5xqqCWbk6x
https://www.google.com/url?sa=t&source= ... 5xqqCWbk6x
If I have helped you solve a problem, please add [SOLVED] to your first post title, it helps other users looking for help.
Regards,
Deepak
Mint 21.1 Cinnamon 64 bit with AMD A6 / 8GB
Mint 21.1 Cinnamon AMD Ryzen3500U/8gb
Regards,
Deepak
Mint 21.1 Cinnamon 64 bit with AMD A6 / 8GB
Mint 21.1 Cinnamon AMD Ryzen3500U/8gb
Re: Why is Mint trying (and failing) to connect to other devices via SNMP?
Maybe I should restate the problem.deepakdeshp wrote: ⤴Tue Aug 18, 2020 7:59 pm You can try snmp connect to other devices ,on your localhost and find if it's a problem with SNMP in general or only while connection to the UPS.
I have never accessed the UPS from this laptop over any protocol.
I have never used SNMP on this laptop.
To my knowledge this laptop should never have accessed the IP of the UPS at all.
Yet, I see several failed attempts in the UPS log from this laptop.
A review of DHCP logs shows no other machine has had the IP of this laptop.
They are mystery entries in the log.
I am not trying to troubleshoot why it won't connect. I am trying to figure out how it figured out the IP of the UPS and why it tried to connect to it in the first place.
Corsair 1000D, Threadripper 3960x, Asus ROG Zenith II, 64GB, Samsung 990 Pro, Geforce RTX 4090, 42" LG C3, 2x Dell U2412M, Schiit Bifrost Multibit DAC
Server: AMD EPYC 7543(32C/64T), SuperMicro H12SSL-NT, 512GB RAM, 192TB ZFS
Server: AMD EPYC 7543(32C/64T), SuperMicro H12SSL-NT, 512GB RAM, 192TB ZFS
- smurphos
- Level 18
- Posts: 8498
- Joined: Fri Sep 05, 2014 12:18 am
- Location: Irish Brit in Portugal
- Contact:
Re: Why is Mint trying (and failing) to connect to other devices via SNMP?
Warpinator? By design it checks the local network for other machines running Warpinator at launch. Not sure what the protocol used is though.
For custom Nemo actions, useful scripts for the Cinnamon desktop, and Cinnamox themes visit my Github pages.
Re: Why is Mint trying (and failing) to connect to other devices via SNMP?
Could be. Either that or someone has snuck something unsavory into the release...
Is there a way to remove/uninstall warpinator?
There is a warpinator package in the repository of my LMDE4 install, but it is not installed?
Code: Select all
$ sudo apt-cache search warpinator
warpinator - Allows simple local network file sharing.
sudo apt remove warpinator
Reading package lists... Done
Building dependency tree
Reading state information... Done
Package 'warpinator' is not installed, so not removed
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
Edit:
So I was thinking just as a workaround to stop random snmp connections (attacks?) on my network, I'd just remove the snmp packages.
Code: Select all
$ sudo apt list --installed |grep -i snmp
WARNING: apt does not have a stable CLI interface. Use with caution in scripts.
libsnmp-base/stable,stable,now 5.7.3+dfsg-5+deb10u1 all [installed]
libsnmp30/stable,now 5.7.3+dfsg-5+deb10u1 amd64 [installed]
matt@e6430s ~ $ sudo apt remove libsnmp-base libsnmp30
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following packages will be REMOVED:
colord hplip libhpmud0 libsane libsane-hpaio libsnmp-base libsnmp30 printer-driver-hpcups printer-driver-hpijs sane-utils simple-scan
0 upgraded, 0 newly installed, 11 to remove and 0 not upgraded.
After this operation, 30.3 MB disk space will be freed.
Do you want to continue? [Y/n]
Maybe hplip uses SNMP to probe for printers?
Ugh, I hate software that ever tries to autodetect anything on the network.
I want my machine to never access anything on the network, local or remote, unless I EXPLICITLY tell it to.
Except for maybe DHCP, but even then I prefer manually set IP's.
Corsair 1000D, Threadripper 3960x, Asus ROG Zenith II, 64GB, Samsung 990 Pro, Geforce RTX 4090, 42" LG C3, 2x Dell U2412M, Schiit Bifrost Multibit DAC
Server: AMD EPYC 7543(32C/64T), SuperMicro H12SSL-NT, 512GB RAM, 192TB ZFS
Server: AMD EPYC 7543(32C/64T), SuperMicro H12SSL-NT, 512GB RAM, 192TB ZFS
Re: Why is Mint trying (and failing) to connect to other devices via SNMP?
Could be. Either that or someone has snuck something unsavory into the release...
Is there a way to remove/uninstall warpinator?
There is a warpinator package in the repository of my LMDE4 install, but it is not installed?
Code: Select all
$ sudo apt-cache search warpinator
warpinator - Allows simple local network file sharing.
sudo apt remove warpinator
Reading package lists... Done
Building dependency tree
Reading state information... Done
Package 'warpinator' is not installed, so not removed
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
Edit:
So I was thinking just as a workaround to stop random snmp connections (attacks?) on my network, I'd just remove the snmp packages.
Code: Select all
$ sudo apt list --installed |grep -i snmp
WARNING: apt does not have a stable CLI interface. Use with caution in scripts.
libsnmp-base/stable,stable,now 5.7.3+dfsg-5+deb10u1 all [installed]
libsnmp30/stable,now 5.7.3+dfsg-5+deb10u1 amd64 [installed]
matt@e6430s ~ $ sudo apt remove libsnmp-base libsnmp30
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following packages will be REMOVED:
colord hplip libhpmud0 libsane libsane-hpaio libsnmp-base libsnmp30 printer-driver-hpcups printer-driver-hpijs sane-utils simple-scan
0 upgraded, 0 newly installed, 11 to remove and 0 not upgraded.
After this operation, 30.3 MB disk space will be freed.
Do you want to continue? [Y/n]
Maybe hplip uses SNMP to probe for printers?
Ugh, I hate software that ever tries to autodetect anything on the network.
I want my machine to never access anything on the network, local or remote, unless I EXPLICITLY tell it to.
Except for maybe DHCP, but even then I prefer manually set IP's.
Corsair 1000D, Threadripper 3960x, Asus ROG Zenith II, 64GB, Samsung 990 Pro, Geforce RTX 4090, 42" LG C3, 2x Dell U2412M, Schiit Bifrost Multibit DAC
Server: AMD EPYC 7543(32C/64T), SuperMicro H12SSL-NT, 512GB RAM, 192TB ZFS
Server: AMD EPYC 7543(32C/64T), SuperMicro H12SSL-NT, 512GB RAM, 192TB ZFS
- smurphos
- Level 18
- Posts: 8498
- Joined: Fri Sep 05, 2014 12:18 am
- Location: Irish Brit in Portugal
- Contact:
Re: Why is Mint trying (and failing) to connect to other devices via SNMP?
If warpinator's not installed it not that.
HPLIP scanning for networked printers could make sense.
HPLIP scanning for networked printers could make sense.
For custom Nemo actions, useful scripts for the Cinnamon desktop, and Cinnamox themes visit my Github pages.
Re: Why is Mint trying (and failing) to connect to other devices via SNMP?
Would CUPS-browsed be doing the same?
Thinkcentre M720Q - LM21.3 cinnamon, 4 x T430 - LM21.3 cinnamon, Homebrew desktop i5-8400+GTX1080 Cinnamon 19.0
Re: Why is Mint trying (and failing) to connect to other devices via SNMP?
Just had the same issue. Fresh Mint install was setting off UPS unauthorized access attempts.
"Informational Events - System: Detected an unauthorized user attempting to access the SNMP interface from IPADDRESS"
Looks like CUPS was causing it.
Found this info from another source online..
"Configs in /etc/sane.d/ was a problem for me.
kodakaio.conf and magicolor.conf has an option net autodiscovery. Comment it out and no more SNMP requests."
This fixed the problem.
Seems crazy that something would spam out SNMP like that.
"Informational Events - System: Detected an unauthorized user attempting to access the SNMP interface from IPADDRESS"
Looks like CUPS was causing it.
Found this info from another source online..
"Configs in /etc/sane.d/ was a problem for me.
kodakaio.conf and magicolor.conf has an option net autodiscovery. Comment it out and no more SNMP requests."
This fixed the problem.
Seems crazy that something would spam out SNMP like that.
Re: Why is Mint trying (and failing) to connect to other devices via SNMP?
Good information, thank you!
Corsair 1000D, Threadripper 3960x, Asus ROG Zenith II, 64GB, Samsung 990 Pro, Geforce RTX 4090, 42" LG C3, 2x Dell U2412M, Schiit Bifrost Multibit DAC
Server: AMD EPYC 7543(32C/64T), SuperMicro H12SSL-NT, 512GB RAM, 192TB ZFS
Server: AMD EPYC 7543(32C/64T), SuperMicro H12SSL-NT, 512GB RAM, 192TB ZFS