1) make the password long, at least 8 character, with alpha numeric, 2) Use TACACS server. Also, lock down this TACACS server. Don't run the tacacs as root. Furthermore, DO NOT RUN TACACS ON MICROSOFT WINDOWS PLATFORMS. FreeBSD or NetBSD is a very good choice, 3) Make users who log onto routers and switches authenticate, authorize via TACACS. Moreover, use AAA accounting to log all activities on routers and switches. 4)Turn off telnet on routers and switches (transport input ssh) and only allow SSH
>From: "[EMAIL PROTECTED]" >Reply-To: "[EMAIL PROTECTED]" >To: [EMAIL PROTECTED] >Subject: Securing passwords [7:23876] >Date: Tue, 23 Oct 2001 08:55:27 -0400 > >Would anyone know how to secure or encrypt passwords on a router/switch >that cannot be easily cracked by freeware software? _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23884&t=23876 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
