thats true cause i think i have done it a couple of times, cause of guys forgetting there passwords, but i think u have to talk to cisco mate, maybe there is a feature they can change for u in the IOS if that is possible at all, but this would have to be done on the boxes you procure from them or maybe they write a patch for you that you can tfp down from there site (CCO needed i think) .
thats ma 2cents Ziggy -----Original Message----- From: jon schatz [mailto:[EMAIL PROTECTED]] Sent: Monday, April 01, 2002 11:57 PM To: Shafagh Zandi Cc: [EMAIL PROTECTED] Subject: Re: Cisco Password Recovery On Sat, 2002-03-30 at 08:09, Shafagh Zandi wrote: > How can I disable password recovery? I don't know anything about password recovery, but anyone with pyhsical (serial cable) access to a cisco product can force the device to reboot and ignore the saved configuration. You can then do a "conf t" and create a new config, save it, and reboot. So you don't actually recover the old password, you just write over it. There are docs for this procedure here: http://www.cisco.com/warp/public/474/ So (like you mentioned in your email), physical access to the equipment is the key factor. Keep people away from your routers and they can't mess with your configuration. -jon -- [EMAIL PROTECTED] || www.divisionbyzero.com gpg key: www.divisionbyzero.com/pubkey.asc think i have a virus?: www.divisionbyzero.com/pgp.html "You are in a twisty little maze of Sendmail rules, all confusing."
