Hello,
is it possible only to reset the password of a RB (with physically access to the hardware) that the intruder gets all the settings?
I want to prevent that anyone gets the settings - if the intruder uses the reset-button, the configuration is gone but he does not get the settings.
Thanks.
No, reset will clear ALL config. You are already safe. There is nothing else to do, you can leave it like it is.
But, there is another option, completely optional.
To be 100% safe, you can use this (VERY DANGEROUS) setting that will also format the NAND and make the device a brick, if you forget the secret time setting:
https://wiki.mikrotik.com/wiki/Manual:RouterBOARD_settings#Protected_bootloader
VERY DANGEROUS
Thanks, very much.