LISTSERV - HP3000-L Archives

HP3000-L Archives

February 1998, Week 4

HP3000-L@RAVEN.UTC.EDU

	LISTSERV Archives
	HP3000-L Home
	HP3000-L February 1998, Week 4

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Message:	[<< First] [< Prev] [Next >] [Last >>]
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Author:	[<< First] [< Prev] [Next >] [Last >>]

Subject:	Re: Protection of MANAGER.SYS-Password in LAN
From:	Richard Gambrell <[log in to unmask]>
Reply To:	[log in to unmask]
Date:	Wed, 25 Feb 1998 20:22:20 -0600
Content-Type:	text/plain
Parts/Attachments:	Re: (31 lines)

>  In <[log in to unmask]>
[log in to unmask]
>  writes:
>
> > > How can I protect the MANAGER.SYS Password from being sniffed,
when I > run
> >  a
> > session from an NT 4.0 Workstation using Reflection 1 and VT-MGR ?
>
> You can't. They're sent in plain text. That's been an open issue for a
> long time, and likely won't be changed soon.
>
> You might look into a third party security package; there are several
> available that support one-time passwords using crypto cards and the
like.
> You can find them listed on the vendor/product directory on www.3k.com
-
> check under "S" for security.
>
>              -Chris Bartram
>

As the other posting on breaking of DES keys shows, one-time keys are
the only way to go if you want security over a public network.

However, you can reduce sniffing on your LAN by proper network layout,
switches, anti-eavesdrop hubs (like HP's - if you buy the snmp modules),
and protection of the wire (use fiber!).

Richard Gambrell

ATOM RSS1 RSS2

RAVEN.UTC.EDU