Comment: "DefaultPasswordEnabled" needs some clarification:
1. What kind of "administrator passwords or other credentials" are
included? Only passwords for admin accounts that are security-relevant
(e.g., not an administrator password that permits a device admin to
change non-security settings)?
2. What kind of credentials?
3. Although not as important as the first clarification, it might be more
clear to change the sense of the whole thing to
"DefaultPasswordsChanged" (0 = not changed).
--
Regards,
Brian Smithson
PMP, CSM, CISSP, CISA, ISO 27000 PA
Senior Security Architect
Global Solutions Engineering
Business Development Center
Ricoh Americas Corporation
bsmithson at ricohsv.com
(408)346-4435
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.pwg.org/pipermail/ids/attachments/20121126/6006a6de/attachment-0001.html>