Re: (ASCEND) security hole in p50

To: Brett Hawn <blh@texas.net>
Subject: Re: (ASCEND) security hole in p50
From: ascend@digistar.com
Date: Tue, 9 Dec 1997 21:55:07 -0600 (CST)
cc: Skeeve Stevens <sstevens@myinternet.net>, ascend-users@bungi.com
In-Reply-To: <19971209203050.11843@texas.net>
Reply-To: ascend@digistar.com
Sender: owner-ascend-users@max.bungi.com

On Tue, 9 Dec 1997, Brett Hawn wrote:

> This is only if you don't change the access in the security profile, its
> relatively simple to turn off if you pay attention to what your doing. I
> agree that its silly to have that as the default but... its ascend :)

> > The 3 levels of access are pointless because once you have the telnet password,
> > it allows you to go into diagnostic mode and dump the p50's config to a 
> > tftp server, complete with all passwords for the unit....

It's actually a good idea.  Most customers using pipelines for NAT don't
want to bother with all that security gobbledegook.  Personally I think
there can't be enough security, but for ease of installation, Ascend's
stance on intital setup configuration security is good.  It saves me a lot
of headaches.

++ Ascend Users Mailing List ++
To unsubscribe:	send unsubscribe to ascend-users-request@bungi.com
To get FAQ'd:	<http://www.nealis.net/ascend/faq>

References:

Re: (ASCEND) security hole in p50

From: Brett Hawn <blh@texas.net>

Prev by Date: Re: (ASCEND) TNT and ISDN
Next by Date: Re: (ASCEND) TNT and ISDN
Prev by thread: Re: (ASCEND) security hole in p50
Next by thread: Re: (ASCEND) security hole in p50
Index(es):
- Main
- Thread