nCircle The Lens Blog

Default Credentials

This is a list of default credentials for various infrastructure devices. There are lots of lists like this out there. Now ask yourself, why is this useful to anyone? It's useful because people don't change the default credentials. A more interesting question is, perhaps, why are there default credentials at all? Why is it possible for me to set up a functioning system with credentials that are not specified by me. This is changing...yet it's still a problem, and perhaps a bigger one when you intersect it with virtualization. Go check out the VMTN appliances. Here's a whole new breed of ready-built systems with default credentials.


TrackBack

TrackBack URL for this entry:
http://blog.ncircle.com/cgi-bin/mt-tb.cgi/158


Post a comment

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)

Verification (needed to reduce spam):



About

This page contains a single entry from the blog posted on February 26, 2007 10:25 AM.

The previous post in this blog was Ric Romero Reporting....

The next post in this blog is 16 Days.

Many more can be found on the main index page or by looking through the archives.



Bio

Blog: The Lens
Author: Tim Erlin

Tim Erlin, CISSP, is a Principal Product Manager at nCircle, responsible for vulnerability management and configuration auditing. In his nearly 10 year tenure at nCircle, he has also held the positions of Senior Sales Engineer and QA Engineer. His career in information technology began with systems and network administration.


   




Categories

  • Blog
  • Information Security Market
  • Regulations and Compliance
  • Vulnerability Research