<div>It is actually scary that someone would not know that a disposable consumer product has some issues. Spoon feed much?</div>
<div> </div>
<div>I guess on your planet perfection is expected at a very low price tag. I am pretty sure that most if not all network devices default with these same silly plug "N" play regardless of its price tag: public , private, tomato, tomatoe woo hoo, I have to rtfm again.
</div>
<div> </div>
<div>The development folks on my world are always leaving the defaults for the users to change why because its cheaper to mass produce and test. </div>
<div> </div>
<div>Mo.Ron Hubbard</div>
<div>Chief Inquisitor Securentology<br><br> </div>
<div><span class="gmail_quote">On 12/28/07, <b class="gmail_sendername"><a href="mailto:uncleron@hushmail.com">uncleron@hushmail.com</a></b> <<a href="mailto:uncleron@hushmail.com">uncleron@hushmail.com</a>> wrote:
</span>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">HP Photosmart C6280 (and probably other) network printers ship with<br>insecure default settings. The printer ships with SNMP enabled
<br>using the default community strings for both public and private.<br>HP does not document the use of SNMP, or provide a way for users to<br>change the default community strings. The printer also includes a<br>web based admin tool which runs over http, without even an option
<br>for ssl.<br><br>Several attempts to contact HP have proven futile.<br><br>_______________________________________________<br>Full-Disclosure - We believe in it.<br>Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html">
http://lists.grok.org.uk/full-disclosure-charter.html</a><br>Hosted and sponsored by Secunia - <a href="http://secunia.com/">http://secunia.com/</a><br></blockquote></div><br>