Here's a secure way of fetching the ASA/PIX configuration including tunnel-groups pre-shared keys (as traditionally done by using the "copy running-config tftp" command).
Use the command "more system:running-config" from the CLI. As opposed to the "show running-config" command, this command shows the pre-shared keys in clear text.
Using a SSH session to access the ASA/PIX and listing the configuration using this command is easier and more secure than the traditional method.
-Emanuel Lipschütz, CCIE #9697, Netsafe International, Stockholm, Sweden
You should only do this when you are using SSH to access the device, not Telnet.
To receive the latest information on Cisco online tools, certifications, support documentation, insights from Cisco experts and peers, and upcoming events, check out the Cisco Technical Services Newsletter today.