Hacker News new | past | comments | ask | show | jobs | submit login
Fines and a ban on default passwords in new UK law (bbc.co.uk)
4 points by mattowen_uk 2 days ago | hide | past | favorite | 3 comments

> hackers stole data from a US casino via an internet-connected fish tank

Not sure if I would locate the problem in a default password here. Some devices feature unique passwords, but that comes at the price that if this password is lost, the device might become defective and only the manufacturer might be able to help.

If you have an internet connected fish tank, you need internal IT. There is no way around that. The fish will need updates at some point I guess.

I think digital literacy should tell people about the dangers of default passwords. I am guilty of not changing those as well because of pure laziness. So maybe this might help.

Hopefully this brings an end to pi:raspberry and pals so beloved of ssh botnet scanners.


Raspbian 'set the tone' of insecure by default and it seems it took legislation to improve matters.

This is good news. I wonder if it will be followed up by requiring people to change passwords on already insecure devices. I somehow doubt it.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact