password stores?

• Previous message (by thread): Security of DNSBL spam block systems
• Next message (by thread): password stores?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

hi,

i'm wondering how large isps offering managed cpe services manage their
password databases.

let's say radius/tacacs is used for normal cpe user aaa, but there is
some 'backup' local user account created on the cpe for situations when
the radius server is unreachable. for security reasons, this backup
account (as well as snmp communities, radius key etc.) is unique per cpe
to avoid frauds caused by end-users (even if one does password recovery
on the cpe, they still don't have the password for other cpe's).

if there are hundreds or thousands of these cpe's that could mean
storing of tens thousands of password. are there any crypto-based
products available or do the people use their own stuff?


thanks

--
 
Tomas Daniska
systems engineer
Tronet Computer Networks
Plynarenska 5, 829 75 Bratislava, Slovakia
tel: +421 2 58224111, fax: +421 2 58224199
 
A transistor protected by a fast-acting fuse will protect the fuse by
blowing first.

• Previous message (by thread): Security of DNSBL spam block systems
• Next message (by thread): password stores?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]