Generic password for web app exposes child education data

Brilliant: setup a new online system and assign the same temporary password to everyone until they login and change it.

How long until people are smart enough that stuff this stupid stops happening

This entry was posted in Old Blog and tagged . Bookmark the permalink.

0 Responses to Generic password for web app exposes child education data

  1. Scott says:

    It’s easy for this kind of thing to happen when you’re thinking about smooth deployment instead of security. When we were in the development phase of our extranet, all users had the same password so that anyone could run scenarios with any of the different user roles. Seems like they could have forced a password change on first login though. No excuses for this.

  2. sarah says:

    my password for my school email is the same as it was from day one and it is a very generic word that is assigned to everyone on their first day. i know of several others who have not changed theirs from the original password.

Leave a Reply

Your email address will not be published. Required fields are marked *