1998-05-08 - [Fwd: 3Com switches - undocumented access level.]

Header Data

From: Sunder <sunder@brainlink.com>
To: cypherpunks@ssz.com
Message Hash: 6e4af4cd1b5f2baff31d99a8de412189b996e1c90c2d01507c7c15532f09ef37
Message ID: <355372B4.C837F915@brainlink.com>
Reply To: N/A
UTC Datetime: 1998-05-08 21:07:47 UTC
Raw Date: Fri, 8 May 1998 14:07:47 -0700 (PDT)

Raw message

From: Sunder <sunder@brainlink.com>
Date: Fri, 8 May 1998 14:07:47 -0700 (PDT)
To: cypherpunks@ssz.com
Subject: [Fwd: 3Com switches - undocumented access level.]
Message-ID: <355372B4.C837F915@brainlink.com>
MIME-Version: 1.0
Content-Type: text/plain


Subject: Re: 3Com switches - undocumented access level.
From: Toh Chang Ying <cytoh@PLEXUS.NET>
Date: Fri, 8 May 1998 18:42:47 +0800
Approved-By: aleph1@NATIONWIDE.NET
Organization: HICOM Teleservices
Reply-To: "cytoh@plexus.net" <cytoh@plexus.net>
Sender: Bugtraq List <BUGTRAQ@NETSPACE.ORG>

The sender was deleted to prevent flames. Don't flame me either. I'm just a poor 3Com user.

-----Original Message-----
Sent:   Friday, May 08, 1998 3:32 PM
Subject:        Re: FW: 3Com switches - undocumented access level.

     Thank you for bringing this up for our attention. First of all, let me
assure you that the undocumented access level for the LANplex/Corebuilder
products are purely for support reasons then anything else. We have many
cases where customers will forget their passwords or userids and find
themselves in a spot as they could not get in to the console. This is the
only way we can help them to recover from this situation without losing
their entire configuration. As far as I know, many vendors also have some
kind of special access methods to assist their customer under such
circumstances.These special access methods are for 3 Com support persons
only and are revealed to customers under very special circumstances.
Because the CoreBuilders/LanPlex are typically deployed at the core of a
network, the config for these equipment is typically complex and very
important to the customers. As such, these method can safe the customer a
lot of time and inconvenience by recovering their proper access to the
equipment. If we have to set these equipment to factory default every time
a customer lose his/her password, we will be in a lot of trouble.

As for the stackables, I believe we do not have this access method. That's
because these equipment is plug n play and do not have many parameters to
reconfigure. In the event, a customer loses his/her password, we can just
set everything back to factory default.

********** http://www.plexus.net/ ***********
Toh Chang Ying, MCP, Network Operation Centre
HICOM Teleservices Sdn Bhd (323218-A)
Suite 3.5, Wisma HICOM, 2 Jln Usahawan U1/8
40150 Shah Alam, Malaysia
Email: cytoh@plexus.net