A Google search for “misconfigured” Mikrotik products…
https://www.google.com/search?q=intitle%3A"RouterOS+router+configuration+page"
Mikrotik should probably at least remove the version number from the login page…
I do agree that version should not be shown. As long as you know the version number, you know what weakness the product has.
Years pass by and nothing changes…
Maybe because you should avoid direct access via the Internet and rather connect via a VPN for administration?
The direct access via the Winbox is already bad enough, but with the web interface without restriction of the source IP it is more of a disaster.
Maybe they are honeypots? I hope… 
You’re missing the point, the version number is still displayed on the login page, once your router has a vulnerability then anyone with access to the user interface knows which one to exploit..
The point is that router’s management access (any kind) should not be wildly open. Period.
Guess what, many management processors built in servers (BMC, iLO, whatever vendor calls them) have http(s) access and show firmware release on login page. The fact server’s got physical management interface while router has virtual one doesn’t change anything.
I like to see version on login page so that I don’t have to login just to chect software version.
You do realize this is not a opinion debate.
The point is that no information whatsoever should be shared unless authenticated (by default). Period.
The same reason people like to reuse passwords. If you want to see the version then ask them to selectively enable you to weaken your stance.
Obviously it is.
@Joni… I WOULD NEVER THINK IT WAS SO EASY… 
Google will take care of them looking for you… Easy life for hacker…
About display version or not:
WHAT IS THE PROBLEM? Simply try all the hack, who stops you?
I open just for joke one link:
\Winbox***>..\Python\Python37\python.exe W*********t.py .111..11
Connected to .111..11:8291
Exploit successful
User: de
Pass: 6*******B
User: admin
Pass: s*********s
So easy…
And I find two device, with patched router version, user admin with no password…
You apparently haven't tried Shodan.
Trying all hacks triggers alerts and countermeasures on many different levels.
Different methods have different requirements, knowing the version number lets you focus on the right one.
[quote=“, post:8, topic:113166”]
You do realize this is not a oppionion debate.
[/quote]Obviously it is.
Sure it is https://cwe.mitre.org/data/definitions/200.html
The simplified main point being that there are zero actual benefits about showing it.
Yes, because I usually try to help than abuse… 
My opinion about showing or not (ignoring the fact that, exposed the version or not, on 2 seconds all hack method can be tested)…
This question is really useless, like the debate about what color a van should have, which has left the door open and is about to lose its load …
The problem is close the door, not just see the color… Or better a system than do not make motor start if the door is leaved open…
MikroTik recently from 6.43 put decent default rules, but the idiots still exist than wipe completely a router before config it,
leaving www, winbox, etc. open to the world, because they are improvised technicians who know nothing of what they do,
just the copy-and-paste from youtube morons or from other sites with absurd scripts…
On YouTube, here, and on other sites there are also intelligent, precise, precious and well explained things,
but if the brain of those who have to accept them is off, nothing can be done …