Re: (ASCEND) Ascend Router SNMP Security Issues [Q]

To: Jennifer Dawn Myers <jdm@enteract.com>
Subject: Re: (ASCEND) Ascend Router SNMP Security Issues [Q]
From: William T Wilson <fluffy@dunadan.com>
Date: Tue, 17 Mar 1998 17:31:37 -0500 (EST)
cc: ascend-users@bungi.com
In-Reply-To: <19980317140029.00254@lazarus.enteract.com>
Reply-To: William T Wilson <fluffy@dunadan.com>
Sender: owner-ascend-users@max.bungi.com

On Tue, 17 Mar 1998, Jennifer Dawn Myers wrote:

>    "What does this mean to you?
> 	RMAs because of lost passwords are expensive and troublesome
> 	for Ascend and our customers. If the router's administrator

They should just put a switch on the unit that resets the passwords to the
default, then.  Or at the least, the functionality should be restricted to
the console port.

This facility will only work if the user has left his SNMP strings at the
default, which no security-conscious user will do.  If you leave your SNMP
strings at the default, you may as well leave your access levels without
passwords too and eliminate the issue altogether.

It's kind of nice to be able to get the passwords out of the unit in
cleartext (for example, moving users from password profiles to RADIUS) but
I'd just as soon be able to just see them if I am logged in with "full
access".

++ Ascend Users Mailing List ++
To unsubscribe:	send unsubscribe to ascend-users-request@bungi.com
To get FAQ'd:	<http://www.nealis.net/ascend/faq>

Follow-Ups:

Re: (ASCEND) Ascend Router SNMP Security Issues [Q]

From: Craig Salmond <salmond@unix.cde.com>

References:

Re: (ASCEND) Ascend Router SNMP Security Issues [Q]

From: Jennifer Dawn Myers <jdm@enteract.com>

Prev by Date: Re: (ASCEND) filter change for port 9 attack
Next by Date: Re: (ASCEND) ISDN w/o PRI?
Prev by thread: Re: (ASCEND) Ascend Router SNMP Security Issues [Q]
Next by thread: Re: (ASCEND) Ascend Router SNMP Security Issues [Q]
Index(es):
- Main
- Thread