10-22-2019, 01:52 PM
@ksone
I hope you've changed the default password and that all your passwords are unique and strong. They are both the first and the only line of defense. In common with all the Raspberry Pi music players I've looked at, moOde isn't security-hardened. If anyone manages to log in as user "pi" [1] they have free rein. At home behind a router with a firewall this isn't so much a problem but in a public/corporate setting it can be a huge problem.
Regards,
Kent
[1] Webcrawlers regularly scrape default username/password pairs from software websites. "pi" is right up there with "root" and "admin" as the first username tried by cracker software and of course no published password is ever forgotten.
I hope you've changed the default password and that all your passwords are unique and strong. They are both the first and the only line of defense. In common with all the Raspberry Pi music players I've looked at, moOde isn't security-hardened. If anyone manages to log in as user "pi" [1] they have free rein. At home behind a router with a firewall this isn't so much a problem but in a public/corporate setting it can be a huge problem.
Regards,
Kent
[1] Webcrawlers regularly scrape default username/password pairs from software websites. "pi" is right up there with "root" and "admin" as the first username tried by cracker software and of course no published password is ever forgotten.
