Could a company like Semtex really overlook that type of thing? I don't really condone breaking and entering, but it kind of shows the issues with anything protected with a password.
I would disagree - end users being lazy/unknowledgeable is something foreseeable, so the company could do something like starting with a random admin password or requiring that the admin password be changed before use. Home router manufacturers seem to be doing increasingly better at this.
AFAIK, most (home/office) security systems are not set up by the end users. Mine has an "engineer" code which is more powerful than the normal user code, and in principle is not left as the default by the installer. He will in turn charge you to come round and enter it if it is ever required.
