nanog mailing list archives
Re: Default Passwords for World Wide Packets/Lightning Edge Equipment
From: Steven Bellovin <smb () cs columbia edu>
Date: Thu, 7 Jan 2010 11:51:09 -0500
On Jan 6, 2010, at 11:38 PM, Joe Hamelin wrote:
On Wed, Jan 6, 2010 at 7:19 PM, Dobbins, Roland <rdobbins () arbor net> wrote:Which goes to show that they just really don't get it when it comes to security. Maybe they should look here at all the entries for 'default credentials':Roland, this isn't the home wi-fi market we're talking about. Anyone that's going to buy one of these puppies is going to have a clue about putting their password in.
Again, look at http://ids.ftw.fm/Home/publications/RouterScan-RAID09-Poster.pdf?attredirects=0 -- while consumer devices were much worse, there was a noticeable problem on enterprise devices and a significant problem with VoIP devices, and I suspect that those latter are largely enterprise-based. --Steve Bellovin, http://www.cs.columbia.edu/~smb
Current thread:
- Re: Default Passwords for World Wide Packets/Lightning Edge Equipment, (continued)
- Re: Default Passwords for World Wide Packets/Lightning Edge Equipment Dobbins, Roland (Jan 06)
- Re: Default Passwords for World Wide Packets/Lightning Edge Equipment Dobbins, Roland (Jan 06)
- RE: Default Passwords for World Wide Packets/Lightning Edge Equipment George Bonser (Jan 06)
- Re: Default Passwords for World Wide Packets/Lightning Edge Equipment Sean Donelan (Jan 07)
- RE: Default Passwords for World Wide Packets/Lightning Edge Equipment Jason Shearer (Jan 07)
- Re: Default Passwords for World Wide Packets/Lightning Edge Equipment Joe Hamelin (Jan 06)
- Re: Default Passwords for World Wide Packets/Lightning Edge Equipment Joe Greco (Jan 06)
- Re: Default Passwords for World Wide Packets/Lightning Edge Equipment Matthew Palmer (Jan 06)
- Re: Default Passwords for World Wide Packets/Lightning Edge Equipment Joe Greco (Jan 06)
- RE: Default Passwords for World Wide Packets/Lightning Edge Equipment Nathan Eisenberg (Jan 07)
- Re: Default Passwords for World Wide Packets/Lightning Edge Equipment Steven Bellovin (Jan 07)
- Re: Default Passwords for World Wide Packets/Lightning Edge Equipment Bjørn Mork (Jan 07)
- Re: Default Passwords for World Wide Packets/Lightning Edge Equipment Ricky Beam (Jan 07)