On 2/12/19 2:35 PM, Michal Kubecek wrote:
Not really. In Ubuntu, there is still an almighty root account with all consequences and hiding it does not change that. If you really want to move in the direction of solving the problem, you should rather learn SELinux, not praise Ubuntu for their pseudosecurity games.
That's what the word "accessible" was for. That was the reason I inserted it. You did notice it, right? Yes there is a root account, but you can't log in, can't ``su'' to it or anything else. This is an example of a pragmatic improvement. [1] It's a small change, it means only one password to remember (because 99% of modern end-user computers only have a single user for their entire life, so all the multiuser stuff is legacy cruft now for most users). [2] It also removes the temptation to use the OS like Windows and always log in as the system administrator (as Puppy Linux does, for instance, which is just one of the reasons I don't recommend it. The creator came over from Windows 9x and doesn't understand the point behind user accounts.) [3] It also means that there _is_ no hidden root password for anyone to find out, social engineer, whatever, and if they did find a way to get to the account, they couldn't log in anyway. Also see: https://xkcd.com/538/ Also also see: https://xkcd.com/1200/ A small, simple, effective change, as opposed to a large, complex, system-wide change which broke lots of things. (And which, in the form of AppArmour, _additionally_ has an incompatible rival.) Also also also see: https://en.wikipedia.org/wiki/Kaizen -- Liam Proven - Technical Writer, SUSE Linux s.r.o. Corso II, Křižíkova 148/34, 186-00 Praha 8 - Karlín, Czechia Email: lproven@suse.com - Office telephone: +420 284 241 084 -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org