3 years ago
This idea is terrible. Not only would it require a re-write of the internal Linux password management system, but it would also widen the attack vector on which the root account is vulnerable to.
@Carcharot - I don't know why you want such an extreme amount of security, but LM is a desktop environment, not a "hide from a certain three-letter agency" distro. Try using Tails if you're paranoid about security.
ok, I have this to say...
1.- I asked about this in the chat, and they sent me here to ask for the two passwords thing...
2.- I do not think that having everything on your same disk and under the same password is ok... More than that: I would like to have an encrypted partition with my SO, and another with my data...; but if you insist on having it all together, ok..., THAT is not logical..., BECAUSE -PRECISELY- of the kernel thing you pointed...
3.- And in THAT case, I would like to have my DATA under a DIFFERENT password than my SO.
4.- In fact, what you pointed is -precisely- THE real thing, because FOR ME, if I can -logically- REINSTALL the O.S., but not RECOVER my data, THEN, MY DATA IS FAR MORE IMPORTANT THAT THE O.S. Then, IF I can have my data under a different partition, independently from my SO, then I don't care if the Kernel blows away....
5.- Then, the kernel really does not mater at all...
I don't think that is a good idea. Two passwords would do a lot mess for the most users. I am pretty sure that there is another solution for your problem. All users must have one password, in my opinion.
You can enable a root password. for security reasons this is turned off by default. If you enable it you should make it more secure than your personal, not less.
No one said that you have less than 20 on your mail! I asked why you consider activities that may corrupt your entire system less security demanding. Updates to the kernel is perhaps the most important thing you will ever do on your computer as it has the potential to turn an encrypted disk into an expensive brick. And you think that require less security? ? ?
Please ask for support in the forums if you are unsure how things work before posting here.
First, I am new in LM; I barely know that when you use something called "sudo" -that is something like "super user do", you put a password that some how is related to some root thing -Linux "is not my thing", still-.
Second, Who told you that I have less than 20 chars as my gmail account password? You are supposing too much. If that matters at all, My email account is only accessible -for me- with a very long password, that is managed by a little database in some encrypted partition of my pc, which password is -by luck- also hidden into another encrypted partition..., and I have no record of it in any other place, and the program itself that opens my e mail account is not able to do it IF I do not open first all the three encrypted units myself.... -with some three long enough passwords-.
Third, the thing about the "master" or "root" password was precisely to make a difference between it and the other password I am requesting for...
First, you are talking about your password, not root password!
If you think you need 24 characters to enter and look at your email why should you need less for activities that could potentially corrupt your system? ? ?