On Thursday, 18 October 2012 at 13:33:02 UTC, Joseph Rushton
Wakeling wrote:
On 10/18/2012 03:18 PM, Alix Pexton wrote:
I'm considering making individual accounts for each user
rather than just giving
out the password to the "pi" user.
TBH that "pi" account seems like a massive security
vulnerability for any RasPi that is open to remote login. Yes,
you can change the password, but I'd be inclined to remove it
and set up an administrator account with a completely different
name ...
You could also add an AllowUsers setting to /etc/ssh/sshd_config
and not include the pi user in it.
