4.6.1 SSH and sudo Security

You should ensure that you are fully aware of the security implications of how you configure Flipper to work with ssh. The default settings of ssh_user and use_sudo may not be appropriate for the security environment in your organisation.

We would recommend that Flipper be configured to connect to nodes as a specified user with a restricted shell, allowing connections only from the appropriate IP address(es), and privilege escalation for that user via sudo should be restricted to the required commands only.