An administrator can reset the password with Authentication="" However, users without admin rights cannot use the same trick. I've found a simple way to bypass "Net-Peeker Authenticate". The configuration is allocated in a static structure in memory. Find this structure, overwrite the password with NULL bytes. That's cool for a recovery but... a local user could exploit this weakness to modify settings.