Subj : Re: Headless Pi 4B problems - continued
To   : Chris Green
From : Andy Burns
Date : Sun Jan 26 2025 18:49:24

Chris Green wrote:

> Is there **really** such a big security issue with default login names
> and passwords on Raspberry Pis?  Surely almost all of them are going
> to be on home networks behind NAT routers and also surely no one is
> going to (without thinking about it a bit!) put confidential data on
> one.

Plenty of Pis (especially the compute modules) end-up in industrial kit,
maybe not much data on them, but you don't want them being used to
laterally attack other systems.

<https://www.legislation.gov.uk/uksi/2023/1007/schedule/1/paragraph/1/made>

	"Passwords must be—
		(a)unique per product; or
		(b)defined by the user of the product."

--- SoupGate-Win32 v1.05
 * Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)

.