Hello,
I found this couple of paragraphs in an SSO Plugin newsletter and
thought it was worth sharing.
We see a lot of Mid Tier deployments and have noticed that the Mid Tier
configuration password is almost never changed from the default value,
arsystem. This poses a security risk, particularly when running a Mid
Tier on the Internet - it doesn't take long to find a few public Mid
Tiers with the default administration password.
SSO Plugin displays a warning on the status page when the default
password is set, so if you haven't changed your Mid Tier administration
password, why not change it now?
John
--
JSS SSO Plugin for BMC, HP, CA, Kinetic, Jasper and more.
http://www.javasystemsolutions.com/jss/ssoplugin
_______________________________________________________________________________
UNSUBSCRIBE or access ARSlist Archives at www.arslist.org
"Where the Answers Are, and have been for 20 years"
