In this world of third-party insanity, I'm constantly amazed how much companies spend for third-party applications that are written like crap and have ZERO security. Lately, I've been plagued by a series of third-part applications using the sa username and password. When you ask them WHY, they get angry and explain that's how the applications were designed. When I politely explain to them that they are idiots, they don't seem to comprehend WHY. So, I'll say it again.....YOU'RE AN IDIOT!!!!!
Magic Helpdesk Software (http://www.remedy.com/solutions/magic/)
- Focusing on the security of the web. HAHAHAHA
RATA HMDA Compliance software (added 20050517)
- This one kind of cracks me up. The default installation creates an account and assigns sysadmin server role rights to it.
I’ll add to the list as I think about more. Let me know your personal favorites.