HP3000-L Archives

February 1998, Week 4

HP3000-L@RAVEN.UTC.EDU
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Re: Protection of MANAGER.SYS-Password in LAN
From:
John Zoltak <[log in to unmask]>
Reply To:
John Zoltak <[log in to unmask]>
Date:
Wed, 25 Feb 1998 12:45:31 -0500
Content-Type:
text/plain
Parts/Attachments:
text/plain (33 lines) 
Even though you can't really stop the sniffing, using a switched network
minimizes the opportunity for someone to sniff your passwords by keep
the traffic from repeating everywhere on your network.

John Zoltak
North American Mfg Co

> -----Original Message-----
> From: Chris Bartram [SMTP:[log in to unmask]]
> Sent: Wednesday, February 25, 1998 12:03 PM
> To:   [log in to unmask]
> Subject:      Re: [HP3000-L] Protection of MANAGER.SYS-Password in LAN
>
>  In <[log in to unmask]>
> [log in to unmask] writes:
>
> > > How can I protect the MANAGER.SYS Password from being sniffed,
> when I > run
> >  a
> > session from an NT 4.0 Workstation using Reflection 1 and VT-MGR ?
>
> You can't. They're sent in plain text. That's been an open issue for a
> long time, and likely won't be changed soon.
>
> You might look into a third party security package; there are several
> available that support one-time passwords using crypto cards and the
> like.
> You can find them listed on the vendor/product directory on www.3k.com
> -
> check under "S" for security.
>
>              -Chris Bartram

ATOM RSS1 RSS2