[Feature Request] - Enforce a repeater admin password other than the default ("password") #2012
Description
Background
From a security perspective, having a well-known default password is not great since not everybody will replace the default with something more secure. While gaining admin access does not give an adversary the ability to decrypt direct messages, there are other ways unauthorized access can be abused. The simplest scenario is a Denial of Service attack, which can disconnect parts of the Mesh. Another scenario is triggering a firmware update and installing malicious software, potentially giving an attacker access to a local network for nodes with WiFi/Ethernet connectivity.
While the value of gaining admin access to a MeshCore repeater may not be extremely high, it cannot be ruled out actual harm can be done. In general, it's just good security practice to not have a weak default password for remotely accessible systems.
Options
There are different ways to address this, but the simplest way I can think of is to disable the radio until the password is no longer "password". Of course there would have to be some helpful messages in the console, apps etc to explain why the radio cannot be enabled.
Perhaps there are objections to this approach, or another approach is considered better or easier. If so I fully defer to the judgement of the developers.