Re: Joe Stupid isn't smart enough to do everything you say
Given current design of the Internet and how a Firewall works and the desire of IoT makers to "phone home", if there was no uPNP, the instructions would explain how to put your entire LAN in the DMZ, or some other such foolishness.
I'd thought of having every router & gadget, phone, laptop, tablet etc have a short range two way IR link to exchange keys and settings, even then have unique key per device. It's simple HW & SW but the makers would object to the extra $2. Unscrupulous vendors would connect stuff in a way worse than today.
The design of Internet is flawed, assumed good users and well behaved devices. The design of eMail ignored spam issues on Telex, RTTY, and earlier Telegraph and added almost no security at all and missed out the idea of whitelists.
Systems never envisaged to be used by other IT Admins in responsible establishments.
There are sticking plasters, but no solution. The triple whammy of rise of IoT, outsource to cloud and giant Corporations stealing (or conning people into giving it) all our private info and usage and monetising it doesn't bode well at all.
If mobile credit balance, ATMs, Point of Sale, Infrastructure control, smart Meters, Retailer's stock ordering / ERP systems etc all outsourced to the "Cloud" and a that has many areas of mono-culture, what if DNS, Edge Routers, what ever is taken down by IoT or a bad patch released late Friday set to auto-install and propagate on the Cloud ...
Or timing of Exchanges, Datacentres, DTT, DAB, Mobile stupidly relying on cheap GPS instead of a local Atomic Clock (under $1000 now) and there is a flare that knocks out all satellite, inc GPS. One in the 19th C. was big enough. There was another that fortunately missed us!
We aren't there yet, but rushing toward it.