I don't believe in system passwords if they're not backup by some type of disk encryption. It's simply too easy to circumvent by changing a few boot parameters or by inserting a good boot disk. For performance reasons, I've decided against using full-disk encryption for my laptop and even against encryption for my home folder. This makes typing in a password to login a mere annoyance. Admittedly, my laptop features a fingerprint reader, but at the time I couldn't get it to work and it still requires me to type in my username, which I find just as superfluous. Also, fingerprints aren't that secure either.
By Rowan Rodrik, 7 years ago, on June 20, 2010, at 00:06 |