User`s guide
–46–
Security and Help Features
Security Features
continued
MD5
authentication,
continued
The
MD5
authentication scheme provides a much higher level of
security than the plain-text type access methods. However,
sophisticated attacks are almost impossible to prevent. Well-configured
firewalls are an essential element in an overall security scheme. For
additional information on MD5 authentication, see
RFC
document
#1321
at the Web site of the Internet Engineering Task Force. For
CHAP
,see
RFC
document
#1994
.
Web interface
MD5
authentication
Interface Security Access Notes
Serial Interface
Control Console
– User name & password Always enabled.
Telnet Control
Console
– User name & password
– Selectable server port
– Server Enable/Disable
The user name and
password are
transmitted plain-text.
SNMP
– Community Name
– NMS IP filters
– Agent Enable/Disable
– Four access communities
with read/write/disable
capability
IP
filters only allow
access from designated
IP
addresses.
FTP Server
– User name & password
– Selectable server port
– Server Enable/Disable
Administrator access
only.
Web Server
– User name & password
– Selectable server port
– Server Enable/Disable
–
MD5
Authentication option
In basic
HTTP
authentication mode, the
user name and
password are
transmitted base-
64
encoded (no encryption).
In
MD5
, authentication
mode uses user name
and password phrase.