mailing list archives
Re: changing routers and switchs passwords remotely
From: Jimi Thompson <jimi.thompson () gmail com>
Date: Mon, 6 Dec 2004 23:05:24 -0600
I've seen a couple that do LDAP authentication, however, if you
employer has a "paranoia index" such they are changing passwords every
3 months but don't currently have TACAS or RADIUS implemented, I'd say
that there's more to this than meets the eye. My guess is that all of
you have one account on all boxes (i.e. you all log in as "root")
1) Do away with "shared" accounts
2) USE TOKENS
3) Implement some sort of centrally controlled and managed account
4) Implement some sort of centrally managed logging and access auditing
On Thu, 2 Dec 2004 13:56:23 -0500, Paris E. Stone <pstone () alhurra com> wrote:
Use a Tacacs+ or Radius server and configure the devices to authenticate
CCO documents aplenty on how to configure it.
Paris E. Stone, "Linux Zealot"
CISSP, CCNP, CNE, MCSE, CIW Master Administrator
"Not all who wander are lost."
From: Juan B [mailto:juanbabi () yahoo com]
Sent: Thursday, December 02, 2004 4:24 AM
To: security-basics () securityfocus com
Subject: changing routers and switchs passwords remotely
in my organization we need to change the enable
password of the swithces ( about 80 )and routers once
each three monthes I an looking for a cheap utility or
application which can help me do that..
can someone advice please?
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around