@tbr okay I am going to say this: default credentials should always be randomly generated on deploy. As in, yes, it is the sysadmin's responsibility to change them, *but* the software should also not set admin:admin and such.

Defense in depth.

Sign in to participate in the conversation

Server run by the main developers of the project 🐘 It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!