Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

PIX saves VPN passwords as plain text

Using a tftp connection to save PIX current config to a Linux server, I could see that VPN local users database is saved as plain text names and PASSWORDS!

Since tftp protocol requires a file readable and writable to anybody, I think this might be a "little" hole in security...

1 REPLY
Gold

Re: PIX saves VPN passwords as plain text

yes and no. it is probably the last and the only way to retrieve the unknown password for isakmp key. i suppose tftp should be treated as a backup. in other words, the backup files should be treated as the same way as a server backup tape.

142
Views
0
Helpful
1
Replies
CreatePlease to create content