>From what I understand, the enable secret is MD5 encrypted. If my memory serves me right, the password file on Linux system (/etc/shadow)is also md5 encrypted. If that is the case, there are utilities on the Internet that can be used to crack this baby. Granted that it is going to require memory and CPU power but it is not as difficult as it sounds. That's the reason why the /etc/shadow file on unix system is read/writable only by root.
>From: "John Neiberger" >Reply-To: "John Neiberger" >To: [EMAIL PROTECTED] >Subject: Re: OT: Enable secret hacking [7:23670] >Date: Sun, 21 Oct 2001 12:45:19 -0400 > >The enable secret would not be an easy thing to crack. The enable >password, >however, can be cracked easily with a number of utilities available for >free >on the internet. > >If you have hackers attacking your network who have the capability to crack >the enable secret then you have much bigger problems. > >As I recall, the enable secret displayed when you do a show run is a >one-way >hash, so the original cannot be determined from the encrypted version. >I'll >have to check into that. > >A good hacker would spend his time elsewhere. Sitting at the login prompt >trying to guess passwords for a few years probably isn't a wise way to >spend >one's time. Hackers tend to go for the low-hanging fruit. > >Regards, >John > >On Sun, 21 Oct 2001 09:13:35 -0400, Gareth Hinton wrote: > >| Hi all, >| >| I'm asking this as a matter of interest after something I saw this week: >| Given the following line of config: >| >| enable secret 5 $1$32Pc$uq7Tr7gq4v22PqEG4WFF90 >| >| What are the chances of cracking the enable secret? (Without raising >| suspicicion by having 40 million attempts on the box itself.) >| Lets say the password is an 8 character string of letters only, not >| necessarily a dictionary word. >| >| What's everybody's view, could it be easily hacked or not? >| >| >| Thanks, >| >| Gaz >| >| >| >| >_______________________________________________________ >http://inbox.excite.com _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23694&t=23670 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
