Some routers use rudimentary encryption, even bitwise and/or algorithms to encrypt passwords. Some use none at all. If you follow the bugtraq mailing list, you will see alot of people finding passwords from a simple stringing of firmware updates and such. If you go back in bugtraq time, you will also see a thread about Cisco routers and cracking their passwords. It's been common practice that the majority of routers/switches/hubs contain default accounts which people find through non-encrypted password strings. Check out http://www.geek-girl.com for indexed/searchable bugtraq posts. Regards, Shaun. > Hi! > > I know this is off the topic of firewalls, but I have a question regarding > encryption of passwords at the router level. First of all can passwords be > encrypted on the routers, and if yes, what is used or done to allow > encryption of passwords on routers? > > I would appreciate any advice that you can give.
Some routers use rudimentary encryption algorithms to encrypt passwords. Some use none at all. If you follow the bugtraq mailing list, you will see alot of people finding passwords from a simple stringing of firmware updates and such. If you go back in bugtraq time, you will also see a thread about Cisco routers and cracking their passwords. It's been common practice that the majority of routers/switches/hubs contain default accounts which people find through non-encrypted password strings. Check out http://www.geek-girl.com for indexed/searchable bugtraq posts. Regards, Shaun. > Hi! > > I know this is off the topic of firewalls, but I have a question regarding > encryption of passwords at the router level. First of all can passwords be > encrypted on the routers, and if yes, what is used or done to allow > encryption of passwords on routers? > > I would appreciate any advice that you can give.
