[120915] in North American Network Operators' Group
RE: Default Passwords for World Wide Packets/Lightning Edge Equipment
daemon@ATHENA.MIT.EDU (George Bonser)
Wed Jan 6 04:25:36 2010
Date: Wed, 6 Jan 2010 01:24:51 -0800
In-Reply-To: <EE181B23-A68B-4B4F-A1C5-FADE37F1E617@arbor.net>
From: "George Bonser" <gbonser@seven.com>
To: "Dobbins, Roland" <rdobbins@arbor.net>,
"NANOG list" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
> Right - what I'm saying is the fact that there are default passwords
at
> all is horribly insecure, and that the vendor in question should be
> prodded to change this dangerous practice.
How is that a risk in any way? Considering that one must have physical
access to reset the unit to factory default, having physical access
pretty much trumps any other security measure.=20
