Solved: algorithm-type scrypt?

JoshGarmonCiscoCCNA · ‎02-01-2017

in my CCNA Security course in school, the standard for enable passwords and username accounts was including the statement

"algorithm-type scrypt" in them

username ___ privilege ____ algorithm-type scrypt secret _____

i can't find much documentation on this and what it means

Karsten Iwen · ‎02-02-2017

By default, passwords are hashed with MD5 which is not very resistant against brute force attacks because it's too easy to compute. Scrypt and PBKDF2 (which can be used with "algorithm-type sha256) are much slower to compute and take longer to brute force. For passwords, this is a desired feature.

https://en.wikipedia.org/wiki/Scrypt

https://en.wikipedia.org/wiki/PBKDF2

View solution in original post

Karsten Iwen · ‎02-02-2017

By default, passwords are hashed with MD5 which is not very resistant against brute force attacks because it's too easy to compute. Scrypt and PBKDF2 (which can be used with "algorithm-type sha256) are much slower to compute and take longer to brute force. For passwords, this is a desired feature.

https://en.wikipedia.org/wiki/Scrypt

https://en.wikipedia.org/wiki/PBKDF2

codewize · ‎09-21-2019

For some reason I'm finding this and a few other commands are not supported by the devices available in PackeTracer. Oddly enough, one of those is the HTTPS server on the ASA5506

It's a bit frustrating during labs because you're not sure if you're typing wrong or if you've lost your mind.

Joseph W. Doherty · ‎09-22-2019

Packet tracer often only provides subsets of the commands available on "real" Cisco network devices. (Also, the commands PT provides are more likely to work incorrectly too.)

codewize · ‎09-24-2019

This is the first time I've had a major issue like this with packet tracer and I have to say it's pretty disappointing. Not a great training aid at all.