I'll take this opportunity to ask - not necessarily to thagrol - how the new default username is any better. Other than reminding it's user that they have certain powers and maybe don't need to use it all the time.... don't use the (old) default username and password, etc ...
To answer the OP question from a beginnerish perspective - on my desktop pi not much. On the NAS Pi under bullseye I had it screwed down with ufw so that only ntp and dns (bad I guess - for the ntp lookup because I never got round to finding an IP address) would work outside the local network. Haven't got that far on bookworm because I was going to research letting updates through. I think my main risk is visitor's phones that we allow onto the wifi (no indoor signal for some networks) letting something in that then phone's home.
Statistics: Posted by PDM1950 — Fri Oct 24, 2025 12:38 pm