To have two root passwords...

Carcharot
  3 years ago
  -7
  Considered

The thing is this: I installed LM18, and it asked me for a password, and I stated that I wanted to encrypt the system...; after that, that one is the password the system is using for everything, from starting session to updating software...
What I need/want, is this: to be able to put a strong -very- password to session start, and another -shorter- for the rest of the actions... such as software updating, software installation, etc...
After all, once I have started the session -with the strong password-, there it is..., that IS me, OR some body figured it out, and then...
there is no sens in keeping my self typing 24 chars just to update the kernel...
That is my idea: I am asking for two master -root- passwords, one for the system start and the other for the rest of the sudo actions...
Thanks!
C.
Latest comments
slicktak 2 years ago

This idea is terrible. Not only would it require a re-write of the internal Linux password management system, but it would also widen the attack vector on which the root account is vulnerable to.

@Carcharot - I don't know why you want such an extreme amount of security, but LM is a desktop environment, not a "hide from a certain three-letter agency" distro. Try using Tails if you're paranoid about security.


Carcharot 3 years ago

ok, I have this to say...
1.- I asked about this in the chat, and they sent me here to ask for the two passwords thing...
2.- I do not think that having everything on your same disk and under the same password is ok... More than that: I would like to have an encrypted partition with my SO, and another with my data...; but if you insist on having it all together, ok..., THAT is not logical..., BECAUSE -PRECISELY- of the kernel thing you pointed...
3.- And in THAT case, I would like to have my DATA under a DIFFERENT password than my SO.
4.- In fact, what you pointed is -precisely- THE real thing, because FOR ME, if I can -logically- REINSTALL the O.S., but not RECOVER my data, THEN, MY DATA IS FAR MORE IMPORTANT THAT THE O.S. Then, IF I can have my data under a different partition, independently from my SO, then I don't care if the Kernel blows away....
5.- Then, the kernel really does not mater at all...
C


dknight 3 years ago

I don't think that is a good idea. Two passwords would do a lot mess for the most users. I am pretty sure that there is another solution for your problem. All users must have one password, in my opinion.


Hammer459 3 years ago

You can enable a root password. for security reasons this is turned off by default. If you enable it you should make it more secure than your personal, not less.


Hammer459 3 years ago

No one said that you have less than 20 on your mail! I asked why you consider activities that may corrupt your entire system less security demanding. Updates to the kernel is perhaps the most important thing you will ever do on your computer as it has the potential to turn an encrypted disk into an expensive brick. And you think that require less security? ? ?


remoulder 3 years ago

Please ask for support in the forums if you are unsure how things work before posting here.


Carcharot 3 years ago

First, I am new in LM; I barely know that when you use something called "sudo" -that is something like "super user do", you put a password that some how is related to some root thing -Linux "is not my thing", still-.
Second, Who told you that I have less than 20 chars as my gmail account password? You are supposing too much. If that matters at all, My email account is only accessible -for me- with a very long password, that is managed by a little database in some encrypted partition of my pc, which password is -by luck- also hidden into another encrypted partition..., and I have no record of it in any other place, and the program itself that opens my e mail account is not able to do it IF I do not open first all the three encrypted units myself.... -with some three long enough passwords-.
Third, the thing about the "master" or "root" password was precisely to make a difference between it and the other password I am requesting for...


Hammer459 3 years ago

First, you are talking about your password, not root password!
If you think you need 24 characters to enter and look at your email why should you need less for activities that could potentially corrupt your system? ? ?