nanog mailing list archives
password stores?
From: "Daniska Tomas" <tomas () tronet com>
Date: Tue, 23 Jul 2002 09:34:50 +0200
hi, i'm wondering how large isps offering managed cpe services manage their password databases. let's say radius/tacacs is used for normal cpe user aaa, but there is some 'backup' local user account created on the cpe for situations when the radius server is unreachable. for security reasons, this backup account (as well as snmp communities, radius key etc.) is unique per cpe to avoid frauds caused by end-users (even if one does password recovery on the cpe, they still don't have the password for other cpe's). if there are hundreds or thousands of these cpe's that could mean storing of tens thousands of password. are there any crypto-based products available or do the people use their own stuff? thanks -- Tomas Daniska systems engineer Tronet Computer Networks Plynarenska 5, 829 75 Bratislava, Slovakia tel: +421 2 58224111, fax: +421 2 58224199 A transistor protected by a fast-acting fuse will protect the fuse by blowing first.
Current thread:
- password stores? Daniska Tomas (Jul 23)
- Re: password stores? Sean Donelan (Jul 23)
- <Possible follow-ups>
- RE: password stores? Shawn Solomon (Jul 23)
- How secure should it be? (was RE: password stores?) Sean Donelan (Jul 24)