The enable secret would not be an easy thing to crack. The enable password, however, can be cracked easily with a number of utilities available for free on the internet.
If you have hackers attacking your network who have the capability to crack the enable secret then you have much bigger problems. As I recall, the enable secret displayed when you do a show run is a one-way hash, so the original cannot be determined from the encrypted version. I'll have to check into that. A good hacker would spend his time elsewhere. Sitting at the login prompt trying to guess passwords for a few years probably isn't a wise way to spend one's time. Hackers tend to go for the low-hanging fruit. Regards, John On Sun, 21 Oct 2001 09:13:35 -0400, Gareth Hinton wrote: | Hi all, | | I'm asking this as a matter of interest after something I saw this week: | Given the following line of config: | | enable secret 5 $1$32Pc$uq7Tr7gq4v22PqEG4WFF90 | | What are the chances of cracking the enable secret? (Without raising | suspicicion by having 40 million attempts on the box itself.) | Lets say the password is an 8 character string of letters only, not | necessarily a dictionary word. | | What's everybody's view, could it be easily hacked or not? | | | Thanks, | | Gaz | | | | _______________________________________________________ http://inbox.excite.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23689&t=23670 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
