Gustin Johnson wrote: > Ralf Mardorf wrote: > >> Ralf Mardorf wrote: > >> > >> sudo vim /etc/default/rcS > >> Of course you should use whatever text editor you are most comfortable > >> with, for me this is vim. > >> > >> Change > >> UTC=yes > >> to > >> UTC=no > >> > >> Reboot and set the time. > > Thank you :) > > > I'm using vim too, resp. when X is running I'm using kate. > > > Back to the root account. If I make music with other people and I go to > > the toilet, they have the time to do something I don't want them to do, > > because they don't need a superuser password, they only need to type > > sudo. I can't see what's secure with this. > > They also need your password. You also have a log of what they did > while you were away. If you don't trust the people you are working > with, you can restrict what commands can be run from sudo, or you could > use a user that has no access via sudo at all. > > Also, with no root password, there is nothing to brute force, and PAM > will not let you log in to an account that does not have a password. > Most people choose terrible passwords anyway.
It was a stupid example from me to say that nearly nothing is save. If I leave my computer in the hands of people I don't trust, they simply could use a rescue CD to "hack" into my Linux ;), because I don't use a password after the power of my computer is turned on. By the way, I'm using easy to hack passwords for most of my Linux. To be prevented against rootkits, it's better not to be connected to the internet, while we don't need to use the net and for a Linux that's connected to the net a good password makes sense, but not for a computer that only stands at home without connection to any network. I guess it also is okay to have a Linux without GDM or KDM at home.
signature.asc
Description: OpenPGP digital signature
_______________________________________________ 64studio-users mailing list [email protected] http://lists.64studio.com/mailman/listinfo/64studio-users
