riday, April 05, 2002 9:38 PM
To: DocValde; [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: RE: Cisco Password Recovery
Also from the Cisco Website under Troubleshooting:
"Break (system interrupt) is always enabled for 60 seconds after rebooting
the system, even if break is configured to
ut
the configuration file (config.text) and the VLAN database file
(vlan.dat) are deleted.
<./from cisco site>
thanks.
- -Original Message-
From: d'Ambly, Jeff [mailto:[EMAIL PROTECTED]]
Sent: Thursday, April 04, 2002 1:10 PM
To: 'Dave Cooper'; [EMAIL PROTECTED]
Subject: RE: Ci
Also from the Cisco Website under Troubleshooting:
"Break (system interrupt) is always enabled for 60 seconds after rebooting
the system, even if break is configured to be off by setting the
configuration register. During the 60-second window, you can break to the
bootstrap mode prompt."
http://
ave Cooper'; [EMAIL PROTECTED]
Subject: RE: Cisco Password Recovery
the command would be
[no] service password-recovery
-Original Message-
From: Dave Cooper [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, April 03, 2002 1:47 PM
To: [EMAIL PROTECTED]
Subject: Re: Cisco Passw
EMAIL PROTECTED]]
Sent: Tuesday, April 02, 2002 4:46 AM
To: Security-Basics@Securityfocus. Com; Shafagh Zandi
Subject: RE: Cisco Password Recovery
I believe that currently that is only available on the Cisco 3550 FastEther
Multilayer switch, and then it is only a smoke screen. (you can reset the
s
5:58 PM
To: Douglas Gullett; Security-Basics@Securityfocus. Com; Shafagh Zandi
Subject: RE: Cisco Password Recovery
If the console and remote ports are turned off in the IOS conf stored in
non-volatile ram, then only network based connections can be used to change
the config... requiring password auth
maybe they write a patch for you that you can tfp down from there site (CCO
needed i think) .
thats ma 2cents
Ziggy
-Original Message-
From: jon schatz [mailto:[EMAIL PROTECTED]]
Sent: Monday, April 01, 2002 11:57 PM
To: Shafagh Zandi
Cc: [EMAIL PROTECTED]
Subject: Re: Cisco Password
the command would be
[no] service password-recovery
-Original Message-
From: Dave Cooper [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, April 03, 2002 1:47 PM
To: [EMAIL PROTECTED]
Subject:Re: Cisco Password Recovery
I have actually made metal plates and screwed them
PROTECTED]]
Sent: Tuesday, April 02, 2002 4:46 AM
To: Security-Basics@Securityfocus. Com; Shafagh Zandi
Subject: RE: Cisco Password Recovery
I believe that currently that is only available on the Cisco 3550 FastEther
Multilayer switch, and then it is only a smoke screen. (you can reset the
switch but
-
From: Frank Quinonez [mailto:[EMAIL PROTECTED]]
Sent: Monday, April 01, 2002 1:06 PM
To: Shafagh Zandi; [EMAIL PROTECTED]
Subject: RE: Cisco Password Recovery
Put a lock on the door!
-Original Message-
From: Shafagh Zandi [mailto:[EMAIL PROTECTED]]
Sent: Saturday, March 30, 2002 8
uring your job?
5. The "lock on the door" will provide "physical" security, however,
there's still remote access
-Original Message-
From: Frank Quinonez [mailto:[EMAIL PROTECTED]]
Sent: Monday, April 01, 2002 4:06 PM
To: Shafagh Zandi; [EMAIL PROTECTE
hafagh Zandi" <[EMAIL PROTECTED]>;
<[EMAIL PROTECTED]>
Sent: Monday, April 01, 2002 1:05 PM
Subject: RE: Cisco Password Recovery
> Put a lock on the door!
>
> -Original Message-
> From: Shafagh Zandi [mailto:[EMAIL PROTECTED]]
> Sent: Saturday, March 30,
If you have physical access the the routers, you can't prevent password
recovery as Cisco built it into the ROM. Also, anyone who can view the
encrypted password can use a utility that will recover the encrypted
password from the config or from sho run, etc. So, implement some real
physical securi
I beleive the only way is to protect the AUX interface. Physical security
is the fix!
-Original Message-
From: Shafagh Zandi [mailto:[EMAIL PROTECTED]]
Sent: Saturday, March 30, 2002 10:10 AM
To: [EMAIL PROTECTED]
Subject: Cisco Password Recovery
Hi, Everybody
I've many Cisco route
I believe that currently that is only available on the Cisco 3550 FastEther
Multilayer switch, and then it is only a smoke screen. (you can reset the
switch but the config will be reset to the default)
It goes back to the saying, "Locks are only there to keep the honest people
out!" The idea, is
On Sat, 2002-03-30 at 08:09, Shafagh Zandi wrote:
> How can I disable password recovery?
I don't know anything about password recovery, but anyone with pyhsical
(serial cable) access to a cisco product can force the device to reboot
and ignore the saved configuration. You can then do a "conf t" a
Put a lock on the door!
-Original Message-
From: Shafagh Zandi [mailto:[EMAIL PROTECTED]]
Sent: Saturday, March 30, 2002 8:10 AM
To: [EMAIL PROTECTED]
Subject: Cisco Password Recovery
Hi, Everybody
I've many Cisco routers and I need to protect my Cisco devices,
especially implementi
17 matches
Mail list logo