Cisco 1751V - Brute Force Reset?

Moderators: Federico.Lagni, TheIrish

Cisco 1751V - Brute Force Reset?

Postby thehand » Sat 01 Dec , 2007 3:56 pm

Salve a tutti, durante un trasloco, un mio cliente ha trovato nell'ufficio nuovo un router Cisco della Serie 1700, esattamente un 1751V buttato in un angolo, abbandonato.

Con mia grande gioia i vecchi proprietari (ora falliti) l'hanno lasciato lì perchè inutile a loro.
L'ho acceso e mi sono collegato via console, mi chiede username e password.
Ho cercato in rete e ho trovato una chiarissima spiegazione per resettare la password (

http://www.cisco.com/en/US/products/hw/routers/ps221/products_password_recovery09186a0080094773.shtml

), l'unico inconveniente è che la funzione di recovery è stata disabilitata, quindi non posso neanche iniziare la procedura.

Esiste un modo per resettarlo? Via Hardware? In maniera "bruta"?
Ho apero il case del router e a parte un espansione di memoria non ho visto nulla che mi potesse fare venire in mente qualcosa.

Mi spiacerebbe non usarlo, contando il fatto che sto frequentando il corso di preparazione alla certificazione CCNA e potrei usarlo per fare delle prove.

Grazie comunque.
thehand
n00b
 
Posts: 1
Joined: Sat 01 Dec , 2007 3:40 pm
Location: Palermo

Postby Wizard » Mon 03 Dec , 2007 10:31 am

Ti giro una guida che avevo trovato non mi ricordo dove:

It is Joe H. , I have been discussing the "no service password-recovery" command with you.
Bear with me tonight I have had alot of ABSOLUT Vodka so my typing skills are a little impaired, anyway its cracked...TOTALLY!!!!.
Here is what I had to do to crack it.
I'm pasting the entire screen log in so output my be a little long but it is worth it!!!

Router-1#

Router-1#

Router-1#term leng 0

Router-1#sh ru

Building configuration...

Current configuration:

!

version 12.0

service timestamps debug uptime

service timestamps log uptime

no service password-encryption

!

hostname Router-1

!

enable secret 5 $1$sCnF$E51c1b/cHBjLYLw.zcboU1

!

!

!

!

!

ip subnet-zero

ip tcp synwait-time 15

no ip domain-lookup

!

ip audit notify log

ip audit po max-events 100

cns event-service server

!

!

!

!

end

Router-1#config t

Enter configuration commands, one per line. End with CNTL/Z.

Router-1(config)#no service password-recovery

WARNING:

Executing this command will disable password recovery mechanism.

Do not execute this command without another plan for password recovery.

Are you sure you want to continue? [yes/no]: yes

Router-1(config)#end

Router-1#

00:04:00: %SYS-5-CONFIG_I: Configured from console by console

Router-1#wr mem

Building configuration...

[OK]

Router-1#sh ru

Building configuration...

Current configuration:

!

version 12.0

service timestamps debug uptime

service timestamps log uptime

no service password-encryption

no service password-recovery

!

hostname Router-1

!

enable secret 5 $1$sCnF$E51c1b/cHBjLYLw.zcboU1

!

!

!

!

!

ip subnet-zero

ip tcp synwait-time 15

no ip domain-lookup

!

ip audit notify log

ip audit po max-events 100

cns event-service server

!

!

!

!

end

Router-1#reload

Proceed with reload? [confirm]

00:05:00: %SYS-5-RELOAD: Reload requested

System Bootstrap, Version 11.3(2)XA4, RELEASE SOFTWARE (fc1)

Copyright (c) 1999 by cisco Systems, Inc.

TAC:Home:SW:IOS:Specials for info

C2600 platform with 49152 Kbytes of main memory

PASSWORD RECOVERY FUNCTIONALITY IS DISABLED

program load complete, entry point: 0x80008000, size: 0x928024

Self decompressing the image : #######################################################################################

###############################################################################################################

###############################################################################################################

###############################################################################################################

###############################################################################################################

###############################################################################################################

###############################################################################################################

###############################################################################################################

###############################################################################################################

####################################################################### [OK]

!Do Not issue the break sequence here!!!!

Restricted Rights Legend

Use, duplication, or disclosure by the Government is

subject to restrictions as set forth in subparagraph

(c) of the Commercial Computer Software - Restricted

Rights clause at FAR sec. 52.227-19 and subparagraph

(c) (1) (ii) of the Rights in Technical Data and Computer

Software clause at DFARS sec. 252.227-7013.

cisco Systems, Inc.

170 West Tasman Drive

San Jose, California 95134-1706

Cisco Internetwork Operating System Software

IOS (tm) C2600 Software (C2600-JO3S56I-M), Version 12.0(7)T, RELEASE SOFTWARE (fc2)

Copyright (c) 1986-1999 by cisco Systems, Inc.

Compiled Tue 07-Dec-99 07:11 by phanguye

Image text-base: 0x80008088, data-base: 0x8107A5D0 !Issued Break Sequence Here

PASSWORD RECOVERY IS DISABLED.

Do you want to reset the router to factory default

configuration and proceed [y/n] ? !Answer this question with a “y”

Reset router configuration to factory default.

Compliance with U.S. Export Laws and Regulations - Encryption

This product performs encryption and is regulated for export

by the U.S. Government.

This product is not authorized for use by persons located

outside the United States and Canada that do not have prior

approval from Cisco Systems, Inc. or the U.S. Government.

This product may not be exported outside the U.S. and Canada

either by physical or electronic means without PRIOR approval

of Cisco Systems, Inc. or the U.S. Government.

Persons outside the U.S. and Canada may not re-export, resell,

or transfer this product by either physical or electronic means

withoutprior approval of Cisco Systems, Inc. or the U.S.

Government.

cisco 2620 (MPC860) processor (revision 0x102) with 39936K/9216K bytes of memory.

Processor board ID JAD042206GN (1804004596)

M860 processor: part number 0, mask 49

Bridging software.

X.25 software, Version 3.0.0.

SuperLAT software (copyright 1990 by Meridian Technology Corp).

TN3270 Emulation software.

1 FastEthernet/IEEE 802.3 interface(s)

1 Serial network interface(s)

32K bytes of non-volatile configuration memory.

16384K bytes of processor board System flash (Read/Write)

!Now for some reason (I have not figured it out yet) the router acts as though you just issued the command again

!and gives you a chance to reverse the command

WARNING:

Executing this command will disable password recovery mechanism.

Do not execute this command without another plan for

password recovery.

Are you sure you want to continue? [yes/no]: no!As you can see I answered no to the question

Press RETURN to get started!

Passed

00:00:36: %LINK-3-UPDOWN: Interface FastEthernet0/0, changed state to up

00:00:36: %LINK-3-UPDOWN: Interface Serial0/0, changed state to down

00:00:37: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to down

00:00:37: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/0, changed state to down

00:00:48: %SYS-5-CONFIG_I: Configured from memory by console

00:00:48: %SYS-5-RESTART: System restarted --

Cisco Internetwork Operating System Software

IOS (tm) C2600 Software (C260Translating "Router-1"

Router-1>0-JO3S56I-M), Version 12.0(7)T, RELEASE SOFTWARE (fc2)

Copyright (c) 1986-1999 by cisco Systems, Inc.

Compiled Tue 07-Dec-99 07:11 by phanguye

00:00:49: %LINK-3-UPDOWN: Interface FastEthernet0/0, changed state to up

00:00:49: %LINK-5-CHANGED: Interface Serial0/0, changed state to administratively down

00:00:50: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up

Router-1>en

Password:

00:00:57: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to down

!

!My config is still there

!

Router-1#sh ru

Building configuration...

Current configuration:

!

version 12.0

service timestamps debug uptime

service timestamps log uptime

no service password-encryption

!

hostname Router-1

!

enable secret 5 $1$sCnF$E51c1b/cHBjLYLw.zcboU1

!

!

!

!

!

ip subnet-zero

ip tcp synwait-time 15

no ip domain-lookup

!

ip audit notify log

ip audit po max-events 100

cns event-service server

!

!

!

!

end

Router-1#

Router-1#

Router-1#

Router-1#sh ver

Cisco Internetwork Operating System Software

IOS (tm) C2600 Software (C2600-JO3S56I-M), Version 12.0(7)T, RELEASE SOFTWARE (fc2)

Copyright (c) 1986-1999 by cisco Systems, Inc.

Compiled Tue 07-Dec-99 07:11 by phanguye

Image text-base: 0x80008088, data-base: 0x8107A5D0

ROM: System Bootstrap, Version 11.3(2)XA4, RELEASE SOFTWARE (fc1)

Router-1 uptime is 1 minute

System returned to ROM by reload

System image file is "flash:c2600-jo3s56i-mz.120-7.T.bin"

cisco 2620 (MPC860) processor (revision 0x102) with 39936K/9216K bytes of memory.

Processor board ID JAD042206GN (1804004596)

M860 processor: part number 0, mask 49

Bridging software.

X.25 software, Version 3.0.0.

SuperLAT software (copyright 1990 by Meridian Technology Corp).

TN3270 Emulation software.

1 FastEthernet/IEEE 802.3 interface(s)

1 Serial network interface(s)

32K bytes of non-volatile configuration memory.

16384K bytes of processor board System flash (Read/Write)

Configuration register is 0x2102

Router-1#
Il futuro è fatto di persone che hanno delle intuizioni e visioni .....sono quelle persone che fanno la differenza...... quelle dotate di un TERZO OCCHIO....
User avatar
Wizard
Intergalactic subspace network admin
 
Posts: 3441
Joined: Fri 03 Feb , 2006 10:04 am
Location: Emilia Romagna

Postby Adain21 » Wed 27 Jan , 2010 12:51 pm

sounds so delicious! Thanks
Love you all
Adain21
n00b
 
Posts: 1
Joined: Wed 27 Jan , 2010 12:46 pm


Return to FAQ & tutorials

Who is online

Users browsing this forum: No registered users and 1 guest

cron