dslreports logo

Because it can easily be decoded. Here is one such example of how this can be accomplished.

Just look for a line like

If you cut and paste the sample hash above, 1500020F0C into one of the following sites, and hit submit, you will see how easy it is to determine the correct password for hash 1500020F0C is rich.

http://www.ifm.net.nz/cookbooks/passwordcracker.html
http://www.firewall.cx/cisco-technical-knowledgebase/cisco-routers/358-cisco-type7-password-crack.html

Discussions:
»getting password from config fil string to text

It is then suggested to use the secret 5 instead that is based on MD5 (Message Digest 5). The secret 5 MD5 uses higher-bit encryption level which makes the secret is much more difficult to decrypt. In other words, using secret 5 is more secure than password 7.


Feedback received on this FAQ entry:
  • Or just use a randomised password that is not going to be used in a production environment. It doesn't matter if you post it then.

    2016-04-10 20:11:30 (Coconutdog See Profile)



Expand got feedback?

by nozero See Profile edited by aryoba See Profile
last modified: 2016-06-20 12:53:55