Re: Why should non-root users have a password?

To: <debian-user@lists.debian.org>
Subject: Re: Why should non-root users have a password?
From: "Andrew Pritchard" <debian@teppic.co.uk>
Date: Sun, 7 Dec 2003 20:00:48 -0000
Message-id: <[🔎] 001e01c3bcfc$e0b95a50$0d00a8c0@ubastard>
References: <[🔎] 20031207192841.GB1024@comcast.net>

> If I have a firewall, and I'm the only person who uses my computer, do I
> really have to have a password on my non-root account?
>
> I know the answer is "yes" but -- why?  They can't do anything to my
> machine anyway, except use it.  And due to the firewall that never
> happens anyway.

There is no such thing as a totally secure machine - including your
firewall. Anyone who tells you otherwise is trying to sell you something. So
the question you need to be asking yourself is:

If someone cracks my firewall - what could they (mis)use my computer for?
Your firewall presumably allows outbound traffic so:

How much spam could they send before your ISP detects it and shuts you down?
How many virus' do you want them to send?

Do I need to go on?

Reply to:

References:
- Why should non-root users have a password?
  - From: Tom <tb.31123.nospam@comcast.net>

Prev by Date: Re: Why should non-root users have a password?
Next by Date: Re: App for making invitation cards
Previous by thread: Re: Why should non-root users have a password?
Next by thread: Re: Why should non-root users have a password?
Index(es):
- Date
- Thread