On 21/03/2013 10:10, jamie rishaw wrote:
apparently, Cisco is changing its password schemas.
old: pbkdf2 by 1k, salted vs New: (type 4) unsalted sha256 .. discuss.?
security advisory:
http://tools.cisco.com/security/center/content/CiscoSecurityResponse/cisco-s...
which states:
Because of the issues discussed in this Security Response, Cisco is taking the following actions for future Cisco IOS and Cisco IOS XE releases:
Type 4 passwords will be deprecated: Future Cisco IOS and Cisco IOS XE releases will not generate Type 4 passwords. However, to maintain backward compatibility, existing Type 4 passwords will be parsed and accepted. Customers will need to manually remove the existing Type 4 passwords from their configuration.
Kudos to Cisco - this was the right thing to do. Nick