Am 19.06.2011 17:23, schrieb Cristian Rodríguez:
In short for "local security" the user password matters a royal damn.
If you do not encrypt the hard-disk, add bootloader passsword, and keep the computer in a safe location, the battle, is lost. RIP.
For remote auth, you must use ssh keys or similar, otherwise you are at the mercy of bruteforce attacks, that one is another lost battle btw.
Well, that isn´t the point. If you really want to crack some other´s PC, you´ll find a method, pretty sure. It´s just, when you install a system, with an automatically log in, and you need to log in as root for any odd reason you have, it might be difficult (Yeah, you can log in over shell and so on, but it´s just *easier* to do it right know via kdm or gdm). Than, if you use one PC togehter with, let me say, 4 people and 4 user accounts. So, user 1 get automatically logged-in. And the other? they need to log in via shell. That isn´t optimal at all. So, why not change to a manual log in. Why not? It´s more secure in the case, that there´s someone other in your family, who wants to change your files, or just read them (this could be happen.). The question is not: "Why should we do it?" It´s just "Why *shouldn´t* we do it?" thanks -- Kim Leyendecker (kdl@k-dl.de.vu) openSUSE Ambassador, openSUSE Wiki Team DE HAVE A LOT OF FUN! http://www.opensuse.org Have you tried SUSE Studio? Need to create a Live CD, an app you want to package and distribute or create your own Linux distro. Give SUSE Studio a try. http://www.susestudio.com -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org