Hidekeys with password encryption Service
Hello
I'm reviewing my companies switch check-in facility and I noticed was the lack of the "hidekeys" command in the configuration of archive. I wonder if this is really necessary when the service password encryption is enabled as surely all passwords would be encrypted anyway?
Thank you!
"the password encryption service" is a very weak security measure because it is reversible. The algorithm is documented and anyone sniffing the transfer can restore passwords. Thereby, these passwords must be viewed in plain text. Now you have to decide if this is a problem for your environment.
Best practice is to move the hashed passwords, where possible. For the fair user accounts move to the 'secret' of the configuration form. But for all types of routing-protocol-passwords which is not possible.
Tags: Cisco Security
Similar Questions
-
Help! Try to encrypt with password
I tried following this, " Security with passwords, Adobe Acrobat PDF files ," but I don't have in my section of the tool 'protect' area. I worked on it for 3 hours now going well all the menus and I cannot find how to lock the document. I don't want the person receiving the document in order to modify or copy. Does anyone know a way?
There are many products Adobe PDF, and they are very different from each other. It is therefore important to check what you have before you try to follow the instructions. The link you posted has upward:
«This document provides instructions for Acrobat DC.» If you are using Acrobat Reader DC, see what I can do with Adobe Reader. If you use Acrobat XI, see XI helps Acrobat. "And, if you use Acrobat 8, 9 or 10, see previous versions of Acrobat help."
The short answer is, you can't do this with player or whatever it is free from Adobe.
-
Hi dear, I just set up my connection wireless network with password
Hi dear,
I just set up my network with password wireless connection and configure my router on the IP 192.168.1.2. , but to be
honest im not sure person cannot access my network and record everything I have on my computr.is is it safe? Please tell me know if you
don't know.
Hi saba161,
If you have the security key settings of the wireless network that turns on encryption. With encryption, people cannot connect to your network without the security key. In addition, any information that is sent on your network is encrypted so that only computers that have the key to decrypt the information can read it. This can help prevent attempts to access your network and your files without your permission. Common wireless network encryption methods are Wi Fi Protected Access (WPA) and WPA2.
Safety is always important; with a wireless network, it is still more important, because your network's signal could go beyond the boundaries of your home. If you don't secure your network, people with computers nearby may be able to access the information stored on computers on your network and use your Internet connection to get on the web.
Setting up a wireless network
http://Windows.Microsoft.com/en-us/Windows-Vista/setting-up-a-wireless-networkI hope this helps!
Halima S - Microsoft technical support.
Visit our Microsoft answers feedback Forum and let us know what you think. -
problem during decryption of password encrypted
Hello to all that I am saving the password encrypted in the database. And decrypting the password attached to the url. But while I'm decrypting it gives me the Exception BadPadding exception. I used this class to encrypt and decrypt the password.
public class CryptAes { // First create the AES key based on the bytes in secretKey using keyLength bits as the length static AESKey keydec = new AESKey("A3$1E*81234567891111111111111111".getBytes() ); static AESKey keyenc = new AESKey("A3$1E*81234567891111111111111111".getBytes() ); static AESKey keyenc128 = new AESKey("A3Q1EF8123456789".getBytes()); static AESKey keydec128 = new AESKey("A3Q1EF8123456789".getBytes()); private static byte[] iv = { 0x0a, 0x01, 0x02, 0x03, 0x04, 0x0b, 0x0c, 0x0d, 0x0a, 0x01, 0x02, 0x03, 0x04, 0x0b, 0x0c, 0x0d }; public static byte[] plainText= new byte[10000]; public static String AESEncryption(byte[] plainText) { String resultString = null; try { AESEncryptorEngine engine = new AESEncryptorEngine( keyenc128 ); CBCEncryptorEngine cengine=new CBCEncryptorEngine(engine, new InitializationVector(iv)); PKCS5FormatterEngine fengine = new PKCS5FormatterEngine( engine ); ByteArrayOutputStream output = new ByteArrayOutputStream(); BlockEncryptor encryptor = new BlockEncryptor( fengine, output ); encryptor.write(plainText); encryptor.close(); byte[] encryptedData = output.toByteArray(); output.close(); String st=new String(encryptedData); byte[] base64 = Base64OutputStream.encode(encryptedData, 0, encryptedData.length, false, false); //Base64Coder.encodeString(Byte.toString(plainText)); resultString = new String(base64); } catch (CryptoException cryptoException) { // TODO: handle exception System.out.println("Exception is "+cryptoException.getMessage()+"And the exception is"+cryptoException.toString()); } catch (CryptoTokenException e) { // TODO: handle exception System.out.println("Exception is "+e.getMessage()+"And the exception is"+e.toString()); }catch (CryptoUnsupportedOperationException e) { // TODO: handle exception System.out.println("Exception is "+e.getMessage()+"And the exception is"+e.toString()); }catch (IOException e) { // TODO: handle exception System.out.println("Exception is "+e.getMessage()+"And the exception is"+e.toString()); } return resultString; } public static String AESDecryption(byte[] cipherText, int dataLength ) /*throws CryptoException, IOException, CryptoTokenException, CryptoUnsupportedOperationException*/ { String reString = null; try { ByteArrayInputStream in = new ByteArrayInputStream( cipherText, 0, dataLength ); // Now create the block decryptor and pass in a new instance // of an AES decryptor engine with the specified block length BlockDecryptor cryptoStream = new BlockDecryptor(new AESDecryptorEngine( keydec128 ), in ); byte[] T = new byte[dataLength]; // Read the decrypted text from the AES decryptor stream and // return the actual length read int length = cryptoStream.read( T ); //Here i am getting exception BadPadding reString = new String(T); int i=reString.indexOf(""); reString = reString.substring(0,i+6); } catch (CryptoException e) { // TODO: handle exception System.out.println("Exception is ="+e.getMessage()); }catch (CryptoTokenException e) { // TODO: handle exception System.out.println("Exception is ="+e.getMessage()); }catch (CryptoUnsupportedOperationException e) { // TODO: handle exception System.out.println("Exception is ="+e.getMessage()); }catch (IOException e) { // TODO: handle exception System.out.println("Exception is ="+e.getMessage()+"333333333333"+e.toString()); } // Create the input stream based on the ciphertext return reString; }Help me with this.
I was trying to encrypt and decipher passing on it but only has failed, so I just change how to encrypt or to decrypt the password. I had just use Base64Coder class to achieve this. And thank you for your concern. And here is the Base64Coder class, if someone needs it.
//Copyright 2003-2009 Christian d'Heureuse, Inventec Informatik AG, Zurich, Switzerland //www.source-code.biz, www.inventec.ch/chdh // //This module is multi-licensed and may be used under the terms //of any of the following licenses: // //EPL, Eclipse Public License, http://www.eclipse.org/legal //LGPL, GNU Lesser General Public License, http://www.gnu.org/licenses/lgpl.html //AL, Apache License, http://www.apache.org/licenses //BSD, BSD License, http://www.opensource.org/licenses/bsd-license.php // //Please contact the author if you need another license. //This module is provided "as is", without warranties of any kind. /** * A Base64 * r/Decoder. * *
* This class is used to encode and decode data in Base64 format as described in RFC 1521. * *
* Home page: http://www.source-code.biz">www.source-code.biz
* Author: Christian d'Heureuse, Inventec Informatik AG, Zurich, Switzerland
* Multi-licensed: EPL/LGPL/AL/BSD. * ** Version history:
* 2003-07-22 Christian d'Heureuse (chdh): Module created.
* 2005-08-11 chdh: Lincense changed from GPL to LGPL.
* 2006-11-21 chdh:
* Method encode(String) renamed to encodeString(String).
* Method decode(String) renamed to decodeString(String).
* New method encode(byte[],int) added.
* New method decode(String) added.
* 2009-07-16: Additional licenses (EPL/AL) added.
* 2009-09-16: Additional license (BSD) added.
*/ public class Base64Coder { //Mapping table from 6-bit nibbles to Base64 characters. private static char[] map1 = new char[64]; static { int i=0; for (char c='A'; c<='Z'; c++) map1[i++] = c; for (char c='a'; c<='z'; c++) map1[i++] = c; for (char c='0'; c<='9'; c++) map1[i++] = c; map1[i++] = '+'; map1[i++] = '/'; } //Mapping table from Base64 characters to 6-bit nibbles. private static byte[] map2 = new byte[128]; static { for (int i=0; i -
AD password synchronization service account
Hi Experts,
I'm looking to create the AD password synchronization service account.
What kind of privileges/role of the IOM service account should have allow the change of password?
Generally, we use the user with the role of the IOM Admin also we can use HelpDesk role to the user as a user help desk have the privillage to change the password of the user / the status of the user user/lock or unlock/vierw/research. If you can go with the role of HelpDesk.
-
The VMware VirtualCenter Server service stopped with the error service special 2 (0x2).
I tried all listed in other postings, but our VSphere 4 server resides on a SQL server server.
I tested the connection odbc with the SA password and it works, it rebooted several times now, tried to stop all services and bringing up one at a time, but whenever a dependency is not. I get this error in the system log, the VMware VirtualCenter Server service stopped with the error service special 2 (0x2).
And
VMware VirtualCenter Management Web Services service depends on the VMware VirtualCenter Server service which failed to start because of the following error:
The service has returned a service-specific error code.
Application log says this
The description for event ID 1000 from source VMware VirtualCenter Server can not be found. Either the component that triggers this event is not installed on your local computer or the installation is corrupted. You can install or repair the component on the local computer.
If the event is on another computer, the display information had to be saved with the event.
The following information has been included in the event:
Could not initialize the VMware VirtualCenter. Closing...
the message resource is present, but the message is not in the string/message table
I don't know how to fix it. It was working fine yesterday. Nothing has changed. Or has anyone experience this problem and have a solution?
see if that helps
-
How to compare the current password encrypted pasword enter APEX4.1
Hi all
In my application uses the following package
Here the ADD_USER procedure will convert the password and stores in the Table app_users in encrypted form.create or replace PACKAGE BODY app_security_pkg AS PROCEDURE login ( p_uname IN VARCHAR2 ,p_password IN VARCHAR2 ,p_session_id IN VARCHAR2 ,p_flow_page IN VARCHAR2 ) IS lv_goto_page NUMBER DEFAULT 1; BEGIN -- This logic is a demonstration of how to redirect -- to different pages depending on who successfully -- authenticates. In my example, it simply demonstrates -- the ADMIN user going to page 1 and all other users going -- to page 2. Add you own logic here to detrmin which page -- a user should be directed to post authentication. IF UPPER(p_uname) = 'ADMIN' THEN lv_goto_page := 1; ELSE lv_goto_page := 2; END IF; APEX_UTIL.SET_SESSION_STATE('FSP_AFTER_LOGIN_URL'); wwv_flow_custom_auth_std.login ( p_uname => p_uname, p_password => p_password, p_session_id => p_session_id, p_flow_page => p_flow_page || ':' || lv_goto_page ); EXCEPTION WHEN OTHERS THEN RAISE; END login; PROCEDURE add_user ( p_username IN VARCHAR2 ,p_password IN VARCHAR2 ) AS BEGIN INSERT INTO app_users (username, PASSWORD) VALUES (UPPER (p_username), get_hash (TRIM (p_username), p_password)); COMMIT; EXCEPTION WHEN OTHERS THEN ROLLBACK; RAISE; END add_user; -- Function to Perform a oneway hash of the users -- passwords. This cannot be reversed. This exmaple -- is a very week hash and if been used on a production -- system, you may want to use a stronger hash algorithm. -- Read the Documentation for more info on DBMS_CRYPTO as -- this is the supported package from Oracle and -- DBMS_OBFUSCATION_TOOLKIT is now depricated. FUNCTION get_hash (p_username IN VARCHAR2, p_password IN VARCHAR2) RETURN VARCHAR2 AS BEGIN RETURN DBMS_OBFUSCATION_TOOLKIT.md5 ( input_string => UPPER (p_username) || '/' || UPPER (p_password)); END get_hash; PROCEDURE valid_user2 (p_username IN VARCHAR2, p_password IN VARCHAR2) AS v_dummy VARCHAR2 (1); BEGIN SELECT '1' INTO v_dummy FROM app_users WHERE UPPER (username) = UPPER (p_username) AND PASSWORD = get_hash (p_username, p_password); EXCEPTION WHEN NO_DATA_FOUND THEN raise_application_error (-20000, 'Invalid username / password.'); END valid_user2; FUNCTION valid_user (p_username IN VARCHAR2, p_password IN VARCHAR2) RETURN BOOLEAN AS BEGIN valid_user2 (UPPER (p_username), p_password); RETURN TRUE; EXCEPTION WHEN OTHERS THEN RETURN FALSE; END valid_user; END app_security_pkg;
In my application, users can change their password,
So I need to compare the password entering the Current_password field with the password encrypted in the app_users table.
So I used the following code,
This code works fine when the password is stored without encryption, but it displays error, after encryptiondeclare l_x varchar2(30); begin select username into l_x from app_users where upper(username) = upper(:P7_USERNAME) and password = :P7_CURRENT_PASSWORD; return (true); exception when no_data_found then return (false); end;
because the password entered is simply password and not encrypted if the two are different even if the user enters the correct password.
Please tel me how encrypt the entered password to compare with the encrypted password.
Thank you
Kind regards
gurujothi.Hi guru,.
When you say comparing it is obvious that both must be in the same format, so either you have to compare both encrypted or not encrypted.
Do you have an example on apex.oracle.com?
Thank you
-
On the remote host MySQL database: password encryption?
Hello
I discovered the world of PHP and MySQL in the last days. I didn't get all the intricacies still but nevertheless I managed to set up a server "localhost" on my computer, create a MySQL database and display correctly information in this database in HTML using PHP pages.
I am now at the stage of transferring it to the remote host where the site will happen: I exported my database, imported these information in the database on the server host and I n unexpectedily even just to get my PHP/HTML pages to connect to this database. It's great.
I have one question. I've read a lot of thread in this forum about this, but haven't seen an answer: must the password encryption? I mean, when I connect to a database using DW CS4, the software creates for me a connections folder in my Web site root folder and stores inside a little PHP to the folder with the server name, database name, user name and password which are necessary to allow PHP to connect to the MySQL database. It is all printed clearly in there. Once which is transferred to the remote host, it is always accessible to anyone? Should I not worry and try to hide the password?
Any thoughts on this would be greatly appreciated.
Emilie
Thread moved to Dreamweaver application development forum, which addresses other issues aside and PHP/MySQL server.
As long as the server is enabled in PHP, put the connection details in a PHP file like this is not a problem. PHP code is processed on the server. Only its output is sent to the browser. Even if someone guesses the name of your connection file, they won't see anything if they try to load the page in a browser. The only way they can see it is to hack into the server. It is important to have passwords on your FTP account.
-
Insert the password encrypted in the table user = > ORA-01861
Hello
I have a little problem, I try to save a password encrypted in the user's my table:
It works well:
But when I try to integrate it into a procedure to insert in my table of the user, it shows me an error ORA-01861:declare test VARCHAR2(40); begin select RAWTOHEX(dbms_crypto.hash(utl_raw.cast_to_raw('yyyyyyy'), dbms_crypto.hash_sh1)) into test from dual; DBMS_OUTPUT.PUT_LINE(test); end; /
The procedure is called from my APEX application, it works when I don't encrypt the password.create or replace procedure inserer_utilisateur(v_nom in varchar2, v_prenom in varchar2, v_adresse in varchar2, v_mail in varchar2, v_login in varchar2, v_password in varchar2, v_dateNaissance in date) as id_uti integer; id_duti integer; begin select seq_Utilisateur.nextval into id_uti from dual; insert into Utilisateur values (id_uti,v_nom,v_prenom,v_adresse,v_mail,v_login,RAWTOHEX(dbms_crypto.hash(utl_raw.cast_to_raw(v_password), dbms_crypto.hash_sh1)),to_date(v_dateNaissance,'DD-MM-YYYY')); select seq_Droit_Utilisateur.nextval into id_duti from dual; insert into Droit_Utilisateur values (id_duti,id_uti,1); end;
I forgot something?
Thank you.
Yann.The problem has nothing to do with encryption
The v_dateNaissance parameter is a date, remove the TO_DATE at all:
insert into Utilisateur values (id_uti,v_nom,v_prenom,v_adresse,v_mail,v_login,RAWTOHEX(dbms_crypto.hash(utl_raw.cast_to_raw(v_password), dbms_crypto.hash_sh1)),v_dateNaissance);Max
http://oracleitalia.WordPress.comPublished by: Massimo Ruocchio, February 16, 2010 18:43
-
I have a 6 s with Verizon iPhone. Can I send/receive calls (using this service and calls on other devices functionality) on my iPhone 5s, who was with AT & T service, but has no service now since I switched to Verizon?
Note: I'm able to get two phones to ring with an incoming call, but the 5s consist not out. Whenever I dial a number, it says call failed.
Do not dial a number. Try to choose a contact in the contacts App and tapping on telephone button.
That said, I don't think that outgoing calls work on continuity since another iPhone. given that the iphone is designed to make calls through its own service.
Document to support that you just did not mention calls from a secondary iPhone at all, it points to Mac, iPad and iPod touch, which leads me to believe that it won't work.
It runs from devices such as iPads and Macs, who have no other way to place a cell call.
-
Password encrypted ticket to principal-protected or is security authorization simply in function?
Result, the safety of this new feature of file system permissions, or are password encrypted notes?
I think that it has encrypted - Security iCloud and overview of privacy - Apple Support
-
Satellite L100 does not connect to with WAP encryption
I just got a new Satellite L100 and I'm trying to connect to my Netgear dg834g router wirelessly. If I disabled security it connects ok, but if I activate WAP message said little or no connectivity. I can connect to the router via a network cable and it's also ok.
If someone could help?Hello
Where have you enabled WPA encryption?
On the WLan router or wireless network card?
If you have enabled encryption on the wireless network card, so you must also configure the WLan router with this encryption.
But if encryption has been configured on the router, so I guess that the wifi card does not support this encryption and you will need to choose another type of encryption as WEP WiFi.Encryption depends on the specification of the equipment and not over WLan driver.
So if the card doesn t supports WPA is so not much to do. -
Connect the keyboard Apple for Windows 10 Bootcamp with password
To connect the keyboard Apple Windows 10 Bootcamp with password, you must type a password or code. The keyboard does not work when you type. Have reinstalled and all update with bootcamp utilities. What should I do to fix this?
If the keyboard is attached on the side OSX, you can turn off pairing it or a wired keyboard to enter the code to complete pairing, if they are available.
-
Lock individual applications with password or contact ID
How individual applications can be locked with password or ID Touch on iPhone 6 Plus? I noticed that in Touch ID & access in the settings code, it included iPhone unlock, Apple pay & iTunes App Store... Some time has all the app not included to lock each individual application wanting to block a user?
Impossible unless they were coded for it.
Even then, probably would not be approved.
-
Unable to sign in iTouch with password security
why I can't SIGN IN on MY ITOUCH NOW? I USE TO BE ABLE TO GET ON THE NET TO THE HOME OR A PLACE OF FREE LIKE STARBUCKS WIFI. I TRIED TO CHECK MY LAPTOP TO SEE WHAT TO DO BECAUSE IT WORKED WELL AT THE BEGINNING
Hello Sharon,
Unfortunately, we are limited in what we can do to help with password lost or forgotten by Microsoft Policy, which applies to anyone who answered questions here. http://support.microsoft.com/kb/189126. But there are a few options to try:
Can you not sign in the itouch at all (because of the password), or just are not able to get online (and you are sure that it is a security password problem and not a problem of configuration or a broader problem with the Itouch)?
You have another account where you know the password (assuming that they are not all the same) that you can use to connect and then probably to do the password changes to this account? (I don't yet know if an Itouch allows multiple accounts - LOL!)
I don't even know if this applies to an Itouch, but if so, make sure that you do not have the CAPS or NUM LOCK keys LOCK (or some similar keys may apply with an Itouch) enabled - this can change what you think, you type in something else (different case or a number or a letter) and the system see what you entered as bad (and make you believe that you do not remember of) the old password).
Finally, if not blocked by the password, can you create a new connection by using the appropriate codes and configuration options, and access or security of passwords (if necessary or they can be created without knowing the old password of security, as it is a new connection) to verify that the problem is not with the old connection (perhaps it has become corrupted or changed somehow and you do not found change)? If it's a computer, that's what I would try in a situation like this.
This is what we can offer in situations involving lost or forgotten or problematic passwords - particularly with an Itouch where our knowledge of the device is limited at best.
I suggest strongly that you try to contact technical support for the Itouch see if they can be most useful. Here are the details: http://www.apple.com/contact/.
Good luck and best wishes!
Maybe you are looking for
-
Qosmio X 870-13 L - black screen after upgrading Ram
Hello This is the 2nd time that I buy ram to upgrade my PC and it does not work. My PC has 2 theses ram already installed when I bought, and they are 4 GB each: "PC-12800 DDR3 800 MHz 11-11-11-28 M471B5273CHO-CKO samsun. I did some research before bu
-
Satellite A30-141 heats up and turns off
Hi I have been using A30 - 141 for about 2 years. The laptop is always used for heating and will turn off. I saw the fans cleaned for abt 4 times now. Should I send again, or there at - it another option of sort it. I still have extended warranty.
-
Can I install a 3rd hard drive (SSD) on my desire to Phoenix 800?
Hi, I just bought a Phoenix 800-089 wanted and I was wondering if I could use for an another SSD expansion Bay? There are already an SSD installed and do not know if the expansion Bay would allow another? If so, do I need to purchase a support of edi
-
numbers of limit of accuracy to 3 significant digits
Hello! I need 3 important figures. If I choose 13 numbers, it gives me 2 places. If I choose the 14, it gives me all the places. Can you please see the attached VI and help me? I need 3 decimal places. Is this possible? Thank you
-
BIOS settings changed by a cheater
Dear Sir, I had given him a laptop for repair in a store (I couldn't give it to an authorized service center as there were none in are, I was assigned), this person has fiddled around with my bios settings. It has removed the name. ID of product and