Buy or Renew
Buy or Renew
NOTICE: The community will be in READ-ONLY Sept. 6 – 9 to add Umbrella release notes and announcements. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5792
Views
0
Helpful
3
Replies

telnet password

Go to solution
nnn_sss22
Level 1
Level 1

‎06-03-2017 04:46 PM - edited ‎03-08-2019 10:50 AM

Hello,

Please tell me, if we configure line vty password then it is not secure.

for example.

s1(config)# line vty 0 15

s1(config-line)# password 12345

s1(config-line)# login local

s1(config-line)# end

it is not secure.

if we create a user and then enable vty then is it secure for example

s1(config)# username admin secret 12345

s1(config)# line vty 0 15

s1(config-line)# login local

s1(config-line)# exit

this is secure method???

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Julio E. Moisa
VIP
VIP

‎06-03-2017 05:26 PM

Hi 

Telnet is not secure because the password information is sent as plain text, so if there is a sniffer or Man in the middle attack, this information can be exposed, the suggestion is use SSH instead Telnet.

Enable secret provides MD5 hash so your password is hidden.

Now if you want to encrypt your local passwords in order to avoid be visible you can use this command.

service password-encryption

It will encrypt your current and new passwords.

It is an interesting link:

https://www.reading.ac.uk/internal/its/help/its-help-pcsecurity/its-pcsecurity-ssh.aspx

Hope it is useful

:-) 




>> Marcar como útil o contestado, si la respuesta resolvió la duda, esto ayuda a futuras consultas de otros miembros de la comunidad. <<

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Julio E. Moisa
VIP
VIP

‎06-03-2017 05:26 PM

Hi 

Telnet is not secure because the password information is sent as plain text, so if there is a sniffer or Man in the middle attack, this information can be exposed, the suggestion is use SSH instead Telnet.

Enable secret provides MD5 hash so your password is hidden.

Now if you want to encrypt your local passwords in order to avoid be visible you can use this command.

service password-encryption

It will encrypt your current and new passwords.

It is an interesting link:

https://www.reading.ac.uk/internal/its/help/its-help-pcsecurity/its-pcsecurity-ssh.aspx

Hope it is useful

:-) 




>> Marcar como útil o contestado, si la respuesta resolvió la duda, esto ayuda a futuras consultas de otros miembros de la comunidad. <<
0 Helpful

Go to solution
nnn_sss22
Level 1
Level 1
In response to Julio E. Moisa

‎06-03-2017 06:12 PM

But which example i have wrote. I did not set vty password. I have set user name secret key. Plz check it. Is it secure now?

0 Helpful

Go to solution
Julio E. Moisa
VIP
VIP
In response to nnn_sss22

‎06-03-2017 06:20 PM

Hi

Apologies, yes it is secure, it will provide MD5 encryption to the password and it will be saved for the specific username.




>> Marcar como útil o contestado, si la respuesta resolvió la duda, esto ayuda a futuras consultas de otros miembros de la comunidad. <<
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card