It is very important to take your server security seriously. Please ensure you setup adequate security controls for your Bahmni server, including firewalls, strong passwords, key based ssh access, https certificates, etc.
Bahmni server is hosting personal data & medical data for citizens & therefore must be properly protected to ensure privacy & security. Your country will likely also have laws & compliance requirements like HIPPA, GDPR, CCPA, PDP, etc – which need to be adhered for storing citizen data. Unlike paper based mechanisms, data from computer systems can be hacked, copied, modified or destroyed very quickly by malicious actors – and it is imperative to take server security very seriously. Please see this list of EHR standards.
A collection of recommended security settings for CentOS V7 server can be found here (excel, word)
It is strongly recommended to change default user passwords for better security of your Bahmni server. Please refer to the list of configurable installation variables here. Also see this discussion. (esp if you are running Bahmni on CentOS)