Closed ghost closed 2 years ago
Will do this today
For the admin password, it doesn't matter its just a temporary account to login, they should delete it right after setup when they have created another account
For the admin password, it doesn't matter its just a temporary account to login, they should delete it right after setup when they have created another account
Well, I feel that we should require them to do that then. See: https://en.wikipedia.org/wiki/Secure_by_default
Moving to #17
The user accounts are a bit insecure. I would suggest that:
- [ ] The default admin password be randomizedI'll mark those as complete when/if they get done. Feel free to share your thoughts.