I've lost track of who said this, but it's an incorrect statement. The default security profile must have Field Service access enabled to get into diagnostic mode using just the Telnet password. If you disable diagnostic access for the default security profile, knowing the Telnet password (or using the serial port) won't get you into diagnostic mode. As with all network devices (Cisco, Ascend, Bay, etc), the default level of access is no security at all. And it must be so or we'd all have a bunch of inaccessible routers lying around, so complaining that the default access permissions is too open is silly. -mel beckman ++ Ascend Users Mailing List ++ To unsubscribe: send unsubscribe to ascend-users-request@bungi.com To get FAQ'd: <<A HREF="http://www.nealis.net/ascend/faq">http://www.nealis.net/ascend/faq</A>> </PRE> <!--X-MsgBody-End--> <!--X-Follow-Ups--> <!--X-Follow-Ups-End--> <!--X-References--> <!--X-References-End--> <!--X-BotPNI--> <HR> <UL> <LI>Prev by Date: <STRONG><A HREF="msg11567.html">Re: (ASCEND) Ap36 release notes page v.</A></STRONG> </LI> <LI>Next by Date: <STRONG><A HREF="msg11564.html">Re: (ASCEND) TNT and ISDN</A></STRONG> </LI> <LI>Prev by thread: <STRONG><A HREF="msg11549.html">Re: (ASCEND) security hole in p50</A></STRONG> </LI> <LI>Next by thread: <STRONG><A HREF="msg11551.html">(ASCEND) FW: Edupage, 9 December 1997 (fwd)</A></STRONG> </LI> <LI>Index(es): <UL> <LI><A HREF="maillist.html#11565"><STRONG>Main</STRONG></A></LI> <LI><A HREF="thrd272.html#11565"><STRONG>Thread</STRONG></A></LI> </UL> </LI> </UL> <!--X-BotPNI-End--> <!--X-User-Footer--> <!--X-User-Footer-End--> </BODY> </HTML>