Raspberry Pi Security

Securing Your Raspberry Pi: A Comprehensive Guide to Password Management and User Accounts

August 6, 2025 - By 
Spread the love

Securing your Raspberry Pi starts with strong passwords and proper user management. The default “pi” user and password pose a significant security risk. This guide will walk you through the essential steps to harden your Raspberry Pi’s security.

Table of Contents

Setting a Password During Setup

The ideal time to set a password is during the initial setup using Raspberry Pi Imager. You’ll be prompted to create a password for the “pi” user. Choose a strong password (a mix of uppercase and lowercase letters, numbers, and symbols) and keep it safe. This proactive step eliminates the need to change the password later.

Changing the “pi” User Password

If you’ve already set up your Raspberry Pi, changing the default “raspberry” password is paramount. Use the following steps:

  1. Connect to your Raspberry Pi: Use SSH or a monitor and keyboard.
  2. Open a terminal: An SSH session already provides a terminal; otherwise, open one.
  3. Change the password: Execute this command and press Enter: 
    sudo passwd pi
  4. Enter the current password: Enter the current password (“raspberry” by default).
  5. Enter the new password: Type your chosen password.
  6. Re-enter the new password: Confirm your new password.

The system confirms the password change. Remember your new password!

Changing Passwords for Other Users

To modify a user’s password (other than “pi”), replace “pi” with the username in the passwd command:

sudo passwd <username>

Substitute <username> with the actual username. The process mirrors changing the “pi” user’s password.

Managing the Root Password

The root user possesses complete system control. Changing the root password is crucial for security. Avoid using sudo passwd root directly. Instead, use sudo su to become root, then change the password using passwd:

  1. Switch to root: 
    sudo su
  2. Change the password: 
    passwd
  3. Enter the current password: Enter your current user’s password (not the root password).
  4. Enter the new root password: Enter your desired root password.
  5. Re-enter the new root password: Confirm the password.
  6. Exit root: Type exit to return to your normal user account.

Creating New Users

Creating separate user accounts enhances security. Use useradd and passwd:

  1. Add the user: 
    sudo useradd <newusername>

    Replace <newusername> with the new username.

  2. Set the password: 
    sudo passwd <newusername>
  3. Create a home directory (optional): 
    sudo mkdir /home/<newusername>
sudo chown <newusername>:<newusername> /home/<newusername>

Granting sudo Privileges

To grant administrative rights, add users to the sudo group:

  1. Add to the sudo group: 
    sudo usermod -aG sudo <newusername>

    Replace <newusername> with the username.

  2. Log out and back in: The user must log out and back in for changes to apply.

By following these instructions, you strengthen your Raspberry Pi’s security. Remember to use strong, unique passwords for all users.

Related posts:

  1. Защита вашего Raspberry Pi: Полное руководство по управлению паролями и учетными записями пользователей
  2. Raspberry Pi sichern: Umfassender Leitfaden zu Passwortverwaltung und Benutzerkonten
  3. Sécuriser votre Raspberry Pi : Guide complet de gestion des mots de passe et des comptes utilisateurs
  4. Raspberry Pi セキュリティ対策完全ガイド:パスワード管理とユーザーアカウント Alternatively, a more concise and catchy option: Raspberry Pi 完全セキュリティ:パスワード&ユーザー管理

Leave a Reply

Your email address will not be published. Required fields are marked *