Re: I'm guessing the slightly tough part.
Trouble is on a lot of these things you can't change the passwords.
for example on a cctv dvr manufactured by dahua (and heavily resold under many brands) you can change all of the passwords apart from 2, the 1st is a remote view login (33333333 / 33333333) the 2nd is a root login (88888888 / 88888888)
the box itself is a cracking bit of kit but you can't deploy it because there is no way of making it secure.
Biting the hand that feeds IT
