[Question] Raspberry PI, SSH, and Security...
Posted: Tue Dec 26, 2017 2:21 pm
by lunorian
My raspberry pi uses the default password (physical access isn't a concern, people with physical access are trusted to not do anything malicious), the SSH Server is open, I configured SSH Keys and disabled password auth. Should I still be concerned about SSH while using the default password or since SSH Keys are required is it not an issue?
Re: [Question] Raspberry PI, SSH, and Security...
Posted: Tue Dec 26, 2017 2:44 pm
by n67
If you have SSH password authorization disabled and you boot the machine (console) directly into the GUI (the default setup on a fresh install), then the password is irrelevant.
However, you might still get the warning (the one that comes up if it figures out that SSH is running and the password is still "raspberry"). In that case, you might want to go ahead and change it (to something/whatever) just to squelch the warning.