> Is it better to leave the possibility of theft of service or is it > better to have the device unusable by default (until configured)?
This is a false dichotomy, as well... It is best to find some reasonable ground where 90% of the people in the world will find the security acceptable, and then let the 10% who care configure the rest. But I would also point out that the argument you're making can be applied to applications as well as network gear. :-) Russ _______________________________________________ homenet mailing list homenet@ietf.org https://www.ietf.org/mailman/listinfo/homenet