Thanks Eric. I’ll have to read it this evening. Love the blog by the way.

The court’s opinion goes into a lot of detail about this issue, so I encourage you to read it. I didn’t understand all of the details, but it sounded like Childs did a good job erecting some barriers. Eric.

I’m a network engineer and I can say for certain that the vast majority of network devices–actually EVERY network device that I know of–can have the password reset. The password reset process is usually intrusive. Most devices have to be rebooted, for example, but I’ve never heard of a network device that will erase itself if someone tries to reset the password.

I’m guessing what he actually did was store the passwords in a secure vault like Keepass and then refuse to hand over the master key to it. Secure password vaults can easily be configured to delete themselves after a certain number of failures.

What he did was definitely wrong and they were right to prosecute him, but the accusation still rings of hyperbole. I don’t see how they could have been completely locked out of their network by what he did. If anyone knows the details please reply. I’m genuinely curious.