Custom Default Password
-
Custom Default Password.
Many N8N programs install using default usernames and passwords as opposed to active directory. Which is understandable.... however very insecure. If you forget to change that default password you could easily get crawled and hacked.
Solution
Create a global variable inside of Cloudron where an admin can customize the default username and passowrd for this type of application.
Example
Wordpress installs with the username admin, and password changeme
how awesome would it be if the changeme part was customized to "customdefaultpassword" -
I saw lots of Cloudrons go down caused by hoster suspensions just because someone installed a blank wordpress which was picked up by bots and used to attack other Wordpress instances on the net. Of course, as a server admin, you have the responsibility to prevent something like this, but it's a serious pitfall. This feature would make Cloudron a little bit more user friendly (aka idiot proof).
It would be sufficient (and even more secure) if the default password were randomized.
-
+1 . I think this will indeed make things a lot more secure than we have now. It is complicated to have this work across apps, but we should do it for all the apps that support it .
-
Referenced by
subven
