On 10/27/2016 1:12 PM, Josiah Yoder wrote: > I teach a real-time systems class where students use Beaglebone over the > network. Generally, we are behind a protected firewall, but sometimes the > students want to debug on other parts of the campus. > > By default, one can access the root account without a password. If my > students > put such a BeagleBone on a network where the IP is externally visible, is it > likely that the BeagleBone will become infected by the open-source botnet > software Mirai? > > I guess it's a moot point -- the root password should be changed before > attaching the BeagleBone to a public network anyway!
At the very least, you need to set a root password, set a password for the default user, and disable the "no password" sudo access. I would also recommend reviewing the open network ports and disabling anything you don't need to use or that isn't secure. You probably don't want things like xrdp and xvnc visible on the raw internet. -- Charles Steinkuehler [email protected] -- For more options, visit http://beagleboard.org/discuss --- You received this message because you are subscribed to the Google Groups "BeagleBoard" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/beagleboard/898a16f2-324e-d6f1-8934-8e59a4bbbea5%40steinkuehler.net. For more options, visit https://groups.google.com/d/optout.
