Reply to post: Re: “allow Admin users to circumvent access controls”

Schneider Electric building manager bug allows security bypass

Anonymous Coward
Anonymous Coward

Re: “allow Admin users to circumvent access controls”

"If you are going to ship a device with any standardized default credentials"

Why does a device need to ship with default credentials? Why not a mandatory setup question before first use?

Ill-advised use of default credentials is a problem that real computers with real OSes sorted maybe three decades ago. Sadly, it seems like that's long enough for people to (a) forget the problem (b) forget the solution.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021