GS1920v2-8HP - credentials are in plaintext
Options
Hi ZYXEL Support Team,
i rebuild a configuration on a GS1920v2 today and a bit confused, that all data (sensitive e.g. admin credentials) are stored in plain text in the config file of a GS1920v2-8HP Switch
such information is normaly stored encrypted in a config backup (e.g. like with the USG accounts)
All other parameter can be stored in cleartext but not the admin credentials
Device Information
Firmware: V4.50(ABKZ.2) | 08/30/2018
HW-Revision: 2.0
Modus: Standalone mode
Thx forward for your response
Christian
i rebuild a configuration on a GS1920v2 today and a bit confused, that all data (sensitive e.g. admin credentials) are stored in plain text in the config file of a GS1920v2-8HP Switch
such information is normaly stored encrypted in a config backup (e.g. like with the USG accounts)
All other parameter can be stored in cleartext but not the admin credentials
Device Information
Firmware: V4.50(ABKZ.2) | 08/30/2018
HW-Revision: 2.0
Modus: Standalone mode
Thx forward for your response
Christian
1
Accepted Solution
-
Hi @ChristianG,
Good day.
Yes, there is a known issue for restore backup configuration and already fixed in the latest patch V4.50(ABxx.3)C0, please upload the latest firmware. (Firmware Link)But based on your encountering issue, it is more related to a typo of the command because we don't have the command line "telnet commant".
I'll PM you to retrieve the configuration file so I could verify.
Thanks for supporting Zyxel and Merry Christmas!
Jonas5
All Replies
-
ChristianG said:
All other parameter can be stored in cleartext but not the admin credentials
But other parameters should not be stored in cleartext.
For example radius authentication password.
So Zyxel should analyze what kind of information is stored in cleartext and how to encrypt it.
Regards1 -
@Alfonso ,
totaly agree to your post. if you have a USG with an old firmware, the SSID and depenting credentials for the SSID where also stored in plaintext in the config file
The USG accounts where decrypted.
So in my mind, they should use the decryption module as in the USG to have not a lot off different modules for decryption
Regards
Christian
0 -
Hi @ChristianG,
We had an internal meeting regarding this case.
The encrypted password for GS1920v2 series admin credentials had already added in Zyxel future roadmap and already listed in the Idea section.
Thanks for your advice.
Jonas0 -
@Zyxel_Jason
is there also a known issue to restore a saved configuration file at a GS1920v2 ?
i got the error in line 5 "telnet commant" that stoped the restore and i had to reconfigure the switch from factory default to the documentated configuration as described in the System Operation Handbook (SOHB).
The switch had only a hand of vLANs in the uplink, changed admin / snmp credentials and no special settings.
Thanks and regards
Christian
0 -
Hi @ChristianG,
Good day.
Yes, there is a known issue for restore backup configuration and already fixed in the latest patch V4.50(ABxx.3)C0, please upload the latest firmware. (Firmware Link)But based on your encountering issue, it is more related to a typo of the command because we don't have the command line "telnet commant".
I'll PM you to retrieve the configuration file so I could verify.
Thanks for supporting Zyxel and Merry Christmas!
Jonas5
Categories
- All Categories
- 393 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 78 Nebula Status and Incidents
- 5.1K Security
- 51 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 70 Switch Ideas
- 906 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 210 Service & License
- 332 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 880 Nebula FAQ
- 415 Security FAQ
- 220 Switch FAQ
- 195 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 63 Security Highlight