Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse

Cloudron Forum

Apps | Demo | Docs | Install

Custom Default Password

Scheduled Pinned Locked Moved Feature Requests
3 Posts 3 Posters 195 Views
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • R Offline
    R Offline
    roofboard
    wrote on last edited by
    #1

    Custom Default Password.

    Many N8N programs install using default usernames and passwords as opposed to active directory. Which is understandable.... however very insecure. If you forget to change that default password you could easily get crawled and hacked.

    Solution

    Create a global variable inside of Cloudron where an admin can customize the default username and passowrd for this type of application.

    Example

    Wordpress installs with the username admin, and password changeme
    how awesome would it be if the changeme part was customized to "customdefaultpassword"

    1 Reply Last reply
    7
  • subvenS Offline
    subvenS Offline
    subven
    wrote on last edited by subven
    #2

    I saw lots of Cloudrons go down caused by hoster suspensions just because someone installed a blank wordpress which was picked up by bots and used to attack other Wordpress instances on the net. Of course, as a server admin, you have the responsibility to prevent something like this, but it's a serious pitfall. This feature would make Cloudron a little bit more user friendly (aka idiot proof).

    It would be sufficient (and even more secure) if the default password were randomized.

    1 Reply Last reply
    0
  • girishG Offline
    girishG Offline
    girish Staff
    wrote on last edited by girish
    #3

    +1 . I think this will indeed make things a lot more secure than we have now. It is complicated to have this work across apps, but we should do it for all the apps that support it .

    1 Reply Last reply
    3
  • subvenS subven referenced this topic on

  • Login

  • Don't have an account? Register

  • Login or register to search.
  • First post
    Last post
0
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Login

  • Don't have an account? Register

  • Login or register to search.