Secure Django Admin, default admin user
mzyndul opened this issue · comments
Location within the Book
- Chapter or Appendix: Working with the Django Admin
- Section: Secure the Django Admin
- Subsection:
Description
This is not related strictly with django admin but it is good to mention.
Create user "admin" which is the most limited user in the system and create superuser with some custom username like "joey". This is another simple technic that allows to focus attackers on "fake" account and not "real" "superuser"