Password on web interface

I have a Volumio device at work.
With no password on the web interface, it is basically accessible to anyone who can guess the name…
Does anyone have a recipe for applying one?
I guess, tis may be covered in another thread, and I tried to search for it, but it seems the search engine and I are NOT friends;-)

1 Like

… or anyone who does a scan of the devices in the local network.

My first question: if it’s a work network, is it a problem that other people can access it? There should be only trusted people on this network in the first place.

A quick-and-dirty solution is to use the webserver’s password authentication. Volumio runs a small server for the webUI (can’t find which one though), and like Apache it most likely has an option to password-protect the entire domain.