Transcription of Cisco Password Types: Best Practices
{{id}} {{{paragraph}}}
Example: quiz answers
Cisco Password Types: Best Practices
U/OO/114249-22 | PP-22-0178 | FEB 2022 Ver. National Security Agency | Cybersecurity Information Sheet Cisco Password Types: Best Practices Three years ago, the Department of Homeland Security (DHS) released an alert on how cyber adversaries obtained hashed Password values and other sensitive information from network infrastructure configuration files. Once the hashes were obtained, the adversaries were able to compromise network devices. That alert showed the results of what happens when cyber adversaries compromise device configurations that have insecure, reversible hashes: they are able to extract sensitive information and compromise networks [1]. The rise in the number of compromises of network infrastructures in recent years is a reminder that authentication to network devices is an important consideration.
Feb 17, 2022 · brute force attempts. However, due to an implementation issue, the Type 4 algorithm only performs a single iteration of SHA-256 (without a salt) over the provided plaintext password, making it weaker than Type 5 and less resistant to brute force attempts. The passwords are stored as hashes within the configuration file. Type 4 was deprecated
Tags:
Information
Domain:
Source:
Link to this page:
Please notify us if you found a problem with this document: