mailing list archives
RE: Locking Cisco Router
From: "Vik Evans" <vik () packeteye com>
Date: Mon, 18 Nov 2002 11:34:57 -0700
But why? I mean, it is obvious to a certain extent, however, as is frequent
with Cisco devices, often a consultant or someone ends up working on the
device at some point in time and if they can't get to the password, you have
a paper weight on your hands. Or there is always the over-worked, in house
IT person who ends up forgetting the password for what ever reason - what
does he do now?
From: Rok Pintar [mailto:rokp () news reproms si]
Sent: Saturday, November 16, 2002 3:22 AM
To: security-basics () securityfocus com
Subject: Re: Locking Cisco Router
is it possible to lock a cisco router to a point that even a password
recovery cant work to enter the router.
Well, there are supposed to be new 2600/3600 ROMMON images that allow
you to disable password recovery. If you have it, you can do something
like "no service password-recovery".