Hi

Lets say nobody can physically access your computer except you and only you.
Is there a way to make your system safe for surfing the internet
and you don't ever have to log-in or ever use any password?

Even root does not need password as long as it is being accessed while physically with attached keyboard.

PLZ dont do it...

2 members found this post helpful.

Yes, it is possible (I mean log in without password), and no, do not even try to do that, that is not safe. If you can get in, someone else will be able to get in too.

If you use Plasma, you can enable automatic login in SDDM settings (in Plasma system settings).

1 members found this post helpful.

Use a live-distro (get one here: https://download.liveslak.org/slackware64-15.0-live/ and modify it to auto-login.
Use it on a separate network from all your other devices.
Turn it off when you are done "surfing the internet".

Nothing is absolutely safe.
The most you can do is to make it the least unsafe possible.

Please note that a passwordless computer is more unsafe than one with a password...

2 members found this post helpful.

no... i mean like iPhone and iPad. You dont need a password to use iPad to surf the web.

Why is Linux cannot be like that?

Why do you think Linux cannot be like that?
It absolutely can.

You can create a "safe" user, or a containerized process to protect your host. And you might also set this user passwordless. But you cannot be root on android, sometimes you cannot even be root at all. Creating a passwordless root account and a surfing the web means you will give your host to anyone (who is interested).

Agreed. Running a password-less box as root is a bad idea. You want to have a buffer or two between you and the bad guys. That's why I use sudo for administrative commands (doas on OpenBSD). Keep your unit patched with security updates and have a firewall.

1 members found this post helpful.

You can set init=/bin/bash on boot and jump straight to root. I have Android, and they don't even let you get root, bind a program to an interface, or for the most part see what's going on with system internals. It's locked down with SE Linux. In that scenario, the system is so locked down already that it's no wonder you don't need a password to browse the web.

It's not really accurate to compare a single user locked down system (smartphones) with Linux, with its roots in Unix, which was/is designed as a multi-user system with simultaneous logins originally running on mini-computers.

1 members found this post helpful.

Everyone is saying if you don't use a root password and a user password on Linux, your system is not safe.

In Android/iOS, there is not even a root password, but you can still update the OS or install new apps.
And nobody use password to log-in to the phone to browse the web.

Yeah, I would like a very locked-down Linux that don't require password. Lets say I am building a Linux laptop for my parents (who is computer illiterate). Would be great if they don't have to mess with passwords, but still surf the web safely.

Just like my mom bought an iPad from Apple Store and just started using it. No passwords needed.

Correct.

But your user is not root, so you are comparing apples to oranges.

Yes. Just like you can on linux.

On iOS devices, including the iPad, the concept of "root" access is different from that of traditional Unix or Linux systems. In Unix/Linux, "root" typically refers to the superuser or administrator with full control over the system. On iOS, Apple retains full control over the operating system and has the highest level of access.

Here's how it works:

Apple's Control:
Apple has complete control over the iOS operating system. They are the root administrators of the device. This control allows them to define and enforce security policies, manage system updates, and ensure the overall stability and security of the iOS ecosystem.

User Permissions:
When you, as a user, create an Apple ID and set up your iOS device, you are granted certain permissions and access levels. However, this is different from traditional root access. Users have limited access to certain parts of the system, and certain actions may require additional authentication, such as a passcode, Touch ID, or Face ID.

Security Model:
iOS relies on a robust security model that includes features like sandboxing, app permissions, and secure boot processes. These measures are in place to prevent unauthorized access and maintain the integrity of the system.

Updates and Remote Management:
Apple remotely manages and updates iOS devices through the Apple ID, iCloud, and the Software Update mechanism. This allows them to push security updates and new features directly to devices without requiring user intervention.

In summary, while users have a level of control over their iOS devices, the ultimate root authority lies with Apple. Users can customize their devices to a certain extent, but Apple's control over the operating system ensures a consistent and secure user experience. The security measures in place also help protect the device and user data from potential threats.

3 members found this post helpful.

Hi Alfred-Augustus,

To autologin when booting to console (runlevel 3), edit /etc/inittab. Something like this:

c1:12345:respawn:/sbin/agetty --autologin <username> --noclear 38400 tty1 linux
--noclear 38400 tty1 linux

Consult the respective display manager docs to autologin when booting to runlevel 4 with a display/login manager. With sddm that comes packaged with Slackware, edit /etc/sddm.conf:

There is no requirement to directly edit /etc/sddm.conf. Autologin can be configured with the KDE System Settings tool, Startup and Shutdown --> Login Screen (SDDM) --> Behavior button.

Most display/login managers support autologin and password-less logins. Some display/login managers are designed not to support root logins. Logging in as root with sddm is supported.

Surfing the web without credentials is straightforward because most web browsers support storing credentials. Similarly, email clients support storing credentials too.

I hope that helps. Have fun!

4 members found this post helpful.