Password Management: Empty Password in Configuration File

Abstract
Using an empty string as a password is insecure.

Description
It is never appropriate to use an empty string as a password. It is too easy to guess and make the application vulnerable to brute-force password guessing attack.