Re: The default IP Addresses just as bad
"This makes it trivial to send commands to the routers from a web page from the User's own PC from within the LAN."
I'll give you a hint, it doesn't matter. If someone has physical access to your equipment, they already own it.
This is why corporates lock up their servers from all but the few key personel. If your only option is to break in via the network, it's much harder.