Hacker News new | past | comments | ask | show | jobs | submit login

I don't understand the problem with having it on the same label as the serial number. Can you elaborate?



To me it implies that the default password can be determined if you are able to discover the MAC address. Either the manufacturer might have it in a database that could be compromised, or the algorithms generating the MAC addresses and the pseudorandom default passwords might be reverse engineered.


This is often the case with WPS on home routers. Here's a blog post detailing the reversing of D-Links WPS PIN generation.

http://www.devttys0.com/2014/10/reversing-d-links-wps-pin-al...




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: