By default, there isn’t administrator password in MSS. So if the customers enable HTTP server, it could be very dangerous without password protection.

In this new upgration, the HTTP server will not be startted if there isn’t administrator password in system configuration.

This modification is also merged to latest V4 version.