From: Ronnie Angello (ronnie.angello@gmail.com)
Date: Mon Jul 09 2007 - 11:21:01 ART
The service pass command uses a weak encryption algorithm. The only benefit
of using that command is that someone watching over your shoulder can't
read your passwords in the clear while you're viewing the configuration.
These passwords can be easily cracked with tools available on the Internet.
The secret keyword encrypts the password using an MD5 hash, just like the
enable secret password is encrypted. This is much stronger encryption and
should be used when possible.
http://www.cisco.com/warp/public/701/64.html
On 7/9/07, Kim <support@isolvesystems.com> wrote:
>
> Hello Expert,
> May I know the difference between username Johndoe secret CISCO vs.
> Service
> password-encryption?
>
> Where do I find more info in the DocCD?
>
> Thanks.
>
> --
> http://www.isolvesystems.com
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
-- Ronald Angello CCIE #17846
This archive was generated by hypermail 2.1.4 : Sat Aug 18 2007 - 08:17:40 ART