On 12/28/10 2:29 PM, Bernd Fondermann wrote:
Hi,
I think it's bad to release a server with default passwords exposed at
default installation.
That's why I changed the default startup classes (Spring-based and
plain-standalone) to generate random passwords when the account is
first created. If the account is persisted, no new password is
generated on server restarts.
With changing passwords through service administration at our
fingertips, I think we now live in a better (and more secure) world.
IMHO, the problem is not where you think it is. Creating random password
does not make it more secure, it makes it more complicated to users.
If an admin is stupid enough to use the server with a default password,
then too bad for him. If he is *that* stupid, he will change the random
password to something easier to remember anyways.
We have had many discussion about this default password problem on ADS,
and at the end, we decided that using 'secret' is just plain ok,
compared to any other solution which would have been more complicated to
setup.
Now, it's up to you :)
--
Regards,
Cordialement,
Emmanuel Lécharny
www.iktek.com
