nanog mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Default Passwords for World Wide Packets/Lightning Edge Equipment

From: "George Bonser" <gbonser () seven com>
Date: Wed, 6 Jan 2010 01:43:15 -0800
-----Original Message-----


having physical access pretty much trumps any other security

measure.


The fact that there's a factory default means that lots of folks won't
change it when they configure the unit with an IP address; they follow
this with failing to implement iACLs, and it's pw3nt1me!



I suppose it is a philosophical thing with me.  I don't believe in
protecting people from their own stupidity. If you try to enforce that,
you end up with organizations making up their own "default" passwords
which can be little better than manufacturer defaults.
Previous By Date Next
Previous By Thread Next

Current thread: