Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
6906
Views
5
Helpful
1
Replies

user password vs. user secret

pnicolette
Level 1
Level 1

‎03-19-2008 10:46 AM - edited ‎03-10-2019 03:44 PM

Most IOS configs (mine included!) seem to use passwords instead of secrets for local users.

If password is weak, reversible encryption, and secret is md5, is there a reason other than habit why people don't use the stronger one?

Just curious.

Paul

Labels:
0 Helpful
1 Reply 1

sundar.palaniappan
Level 10
Level 10

‎03-19-2008 11:13 AM

In most cases using MD5 password will probably be the better option. I can think of one scenario where use of non-MD5 password can be helpful.

Let's say security isn't a concern for a router, which sits behind a firewall on the trusted side of the network. The router configuration is backed up periodically. If the network admin forgot the password then he could pull the backed up configuration and retrieve the password. Instead, if MD5 password was used performing password recovery on the router would be the only option.

There can be other reasons why use of non-MD5 password might be a better option. But, under normal circumstances MD5 will give you the extra security to protect password from being decoded.

HTH

Sundar

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents