CVE-2017-5689 revealed that the AMT would _accept an empty password, allowing full remote code execution_. Tanenbaum portrays his BSD-licensed OS underlying this junk as a demonstration of "the maximum amount of freedom", and his only concern is that he would have liked to have known how popular this OS is now. If there was ever an example as to programmers being completely oblivious as to the ramifications of distributing their creations, this is it.