The Pi Wire

Raspbian's tight security

In the wake of IoT attacks, Raspbian has taken an important step towards increasing security.

The Raspberry Pi Foundation has tightened security around Raspbian PIXEL [7], its official operating system for Raspberry Pi. Users may notice that when they install Raspbian PIXEL through NOOBs, they won't be able to 'ssh' into the system as it is now disabled by default

SSH (Secure SHell) is a networking protocol that's used on Linux/UNIX system to log into the system and manage it remotely.However, hackers can sometimes exploit this loophole outside private networks to take control of the system. Considering the massive botnet attack using IoT devices that took down the Internet, it's a wise decision to disable SSH by default. especially asRaspbian also has a default password, which makes it even easier for an attacker to target the Pi.

Previously, SSH could be enabled and disabled from raspi-config utility or GUI tool 'Raspberry Pi Configuration', but the Raspberry Pi is oftenused headlessly – without a keyboard or mouse. However headless users can still insert the Pi's microSD card into a computer and save a file called 'ssh' into the /boot/ directory. It can't be an empty file. When Raspbian boots and finds 'ssh' in the directory, it enables SSH and deletes the file.

There is also now a warning message if SSH is enabled and the password is still set to the default 'raspberry'. Both are non-intrusive ways to protect users from attacks, without breaking functionality or adding complexity.

Buy this article as PDF

Express-Checkout as PDF

Pages: 4

Price $2.95
(incl. VAT)

Buy Raspberry Pi Geek

Get it on Google Play

US / Canada

Get it on Google Play

UK / Australia

Related content

  • News

    RealVNC for Free; Asus Tinker Board; Pi Compute Module 3; Dride Smart Dashcam; and NextCloud Box.

  • Using the Raspberry Pi as a backup server

    A good backup system is not only important, it is essential when a hard drive crashes, a virus infects the system, or you are victimized by ransomware. Luckily, the Raspberry Pi is ideally suited to run as a backup server in the background.

  • On the DVD

    Raspbian Jessie 2017/01 and Opensuse Leap 42.2 E20

  • Open and secure videoconferencing with Jangouts

    Jangouts, an open and free drop in for Skype and Hangouts, when installed on a Raspberry Pi provides a videoconferencing solution for up to 40 users for under $50.

  • The Pi Wire

    Raspberry Pi gets a new browser and new VGA support. Also, Raspberry Jams, Shellshock, and Eben talks A+.