So not a lot has changed then? SAP R/3 releases 1.2, 2.X, and early 3.X did not force OS service account password changes, nor forcing changes to Client accounts SAP* and DDIC in each and every Client. As a consultant we TOLD customers to change them, WE CHANGED them manually where we could, but still there were test and QA systems with copies of production data still running defaults.
Your typical bang-head-on-concrete-post situation.
It took a two step product install addition to fix this, and all of a sudden things went very very peaceful for on-call BASIS consultants, and database architects.
The downside of a product technology swap are all the lessons lost by the old support group not taken on board by the eager new product team.