Jan, Looking at https://docs.bitnami.com/general/infrastructure/couchdb/ they're making an admin account by default, which implies that ransomware stuff won't happen simply because admin-party-mode == true
The documentation recommends the reader should edit local.ini in three places. One to get it to accept connections from something other than 127.0.0.1, another for changing the admin password, and the last to setup HTTPS (with certs). >From a DevOps point of view, scripts would be better: openCouchUpFrom127001ToAll.sh, chgCouchAdminPassword.sh and alike. I'll do some more checking. Regards, - Paul