Reply to post: Re: “allow Admin users to circumvent access controls”

Schneider Electric building manager bug allows security bypass

JonP

Re: “allow Admin users to circumvent access controls”

Default credentials makes it much easier to install and test equipment like this, especially if you've got a number of different people all needing to tweak things. If you use proper secure credentials too early you end up having to distribute them to more people than you might want to and then have to change them all when you finish, it's not worth the hassle.

Of course when you're done you still need to make sure you've setup proper credentials, but hopefully you'll have a procedure in place to make sure that gets done...

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021