The truth about Liberty’s “backdoor codeâ€
There’s a lot of missinformation floating around right now, ranging from “there’s a secret code which will open any safe†to “the only way to change the code is to replace the lock.†I hope I can clear some of this up.
LIberty is in the wrong. 100%. But we’ll get to that. First, some facts.
Like many safe manufacturers, Liberty uses third-party locks on their safes. When I bought mine, it was a S&G lock, and now they use I think, secureram or something. Anyway, they work essentially the same.
Each lock has a uniquely programmed Management Reset Code (I believe programmed at the factory) which is literally printed on the back of each lock itself (see attached image), just like the default password when you buy a router. **This code is not universal across ANY device** and is truly unique to the lock. Also like your router, [this default password can be changed by the user](https://sargentandgreenleaf.com/knowledgebase/knowledgebase-2017-02-24-change-the-management-reset-code/), but this capability is not documented in the instructions provided by Liberty, likely on purpose so they can keep the keys. They also warn you that changing this code (ostensibly through a locksmith) will void your warranty unless the new code is provided to them.
The MRC functions like a factory reset which you can do from outside the safe. It is not an unlock combination, per se, but since the factory reset restores the default combination, it’s not far off, and absolutely does grant a person access to the safe.
I have no issue with the existence of MRC’s, but I believe these codes should be handed over in their entirety to the end user so THE USER can decide whether or not to keep it or destroy it. And perhaps more importantly, the manufacturer should make absolutely **no attempt** to keep or maintain a database of these numbers. I understand that they believe it is a useful tool in helping you should you get locked out, but it is simply too dangerous to have that information out in the free world.
Here we all are upset that they gave a code out, but imagine this: they LITERALLY have a database of our registered address and master reset codes to our safes. All it takes is one data breach and …so I even need to say it?
Again, **the manufacturer should make absolutely no attempt** to keep or maintain a database of these numbers**. Ever.