SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Lets say nobody can physically access your computer except you and only you.
Is there a way to make your system safe for surfing the internet
and you don't ever have to log-in or ever use any password?
Even root does not need password as long as it is being accessed while physically with attached keyboard.
Last edited by Alfred-Augustus; 12-22-2023 at 12:52 AM.
Lets say nobody can physically access your computer except you and only you.
Is there a way to make your system safe for surfing the internet
and you don't ever have to log-in or ever use any password?
Even root does not need password as long as it is being accessed while physically with attached keyboard.
Yes, it is possible (I mean log in without password), and no, do not even try to do that, that is not safe. If you can get in, someone else will be able to get in too.
Lets say nobody can physically access your computer except you and only you.
Is there a way to make your system safe for surfing the internet
and you don't ever have to log-in or ever use any password?
Even root does not need password as long as it is being accessed while physically with attached keyboard.
Use a live-distro (get one here: https://download.liveslak.org/slackware64-15.0-live/ and modify it to auto-login.
Use it on a separate network from all your other devices.
Turn it off when you are done "surfing the internet".
Nothing is absolutely safe.
The most you can do is to make it the least unsafe possible.
Please note that a passwordless computer is more unsafe than one with a password...
no... i mean like iPhone and iPad. You dont need a password to use iPad to surf the web.
Why is Linux cannot be like that?
You can create a "safe" user, or a containerized process to protect your host. And you might also set this user passwordless. But you cannot be root on android, sometimes you cannot even be root at all. Creating a passwordless root account and a surfing the web means you will give your host to anyone (who is interested).
Agreed. Running a password-less box as root is a bad idea. You want to have a buffer or two between you and the bad guys. That's why I use sudo for administrative commands (doas on OpenBSD). Keep your unit patched with security updates and have a firewall.
no... i mean like iPhone and iPad. You dont need a password to use iPad to surf the web.
You can set init=/bin/bash on boot and jump straight to root. I have Android, and they don't even let you get root, bind a program to an interface, or for the most part see what's going on with system internals. It's locked down with SE Linux. In that scenario, the system is so locked down already that it's no wonder you don't need a password to browse the web.
It's not really accurate to compare a single user locked down system (smartphones) with Linux, with its roots in Unix, which was/is designed as a multi-user system with simultaneous logins originally running on mini-computers.
Why do you think Linux cannot be like that?
It absolutely can.
Everyone is saying if you don't use a root password and a user password on Linux, your system is not safe.
In Android/iOS, there is not even a root password, but you can still update the OS or install new apps.
And nobody use password to log-in to the phone to browse the web.
Last edited by Alfred-Augustus; 12-22-2023 at 09:56 AM.
You can set init=/bin/bash on boot and jump straight to root. I have Android, and they don't even let you get root, bind a program to an interface, or for the most part see what's going on with system internals. It's locked down with SE Linux. In that scenario, the system is so locked down already that it's no wonder you don't need a password to browse the web.
It's not really accurate to compare a single user locked down system (smartphones) with Linux, with its roots in Unix, which was/is designed as a multi-user system with simultaneous logins originally running on mini-computers.
Yeah, I would like a very locked-down Linux that don't require password. Lets say I am building a Linux laptop for my parents (who is computer illiterate). Would be great if they don't have to mess with passwords, but still surf the web safely.
Just like my mom bought an iPad from Apple Store and just started using it. No passwords needed.
Last edited by Alfred-Augustus; 12-22-2023 at 10:01 AM.
Yeah, I would like a very locked-down Linux that don't require password. Lets say I am building a Linux laptop for my parents (who is computer illiterate). Would be great if they don't have to mess with passwords, but still surf the web safely.
Just like my mom bought an iPad from Apple Store and just started using it. No passwords needed.
On iOS devices, including the iPad, the concept of "root" access is different from that of traditional Unix or Linux systems. In Unix/Linux, "root" typically refers to the superuser or administrator with full control over the system. On iOS, Apple retains full control over the operating system and has the highest level of access.
Here's how it works:
Apple's Control:
Apple has complete control over the iOS operating system. They are the root administrators of the device. This control allows them to define and enforce security policies, manage system updates, and ensure the overall stability and security of the iOS ecosystem.
User Permissions:
When you, as a user, create an Apple ID and set up your iOS device, you are granted certain permissions and access levels. However, this is different from traditional root access. Users have limited access to certain parts of the system, and certain actions may require additional authentication, such as a passcode, Touch ID, or Face ID.
Security Model:
iOS relies on a robust security model that includes features like sandboxing, app permissions, and secure boot processes. These measures are in place to prevent unauthorized access and maintain the integrity of the system.
Updates and Remote Management:
Apple remotely manages and updates iOS devices through the Apple ID, iCloud, and the Software Update mechanism. This allows them to push security updates and new features directly to devices without requiring user intervention.
In summary, while users have a level of control over their iOS devices, the ultimate root authority lies with Apple. Users can customize their devices to a certain extent, but Apple's control over the operating system ensures a consistent and secure user experience. The security measures in place also help protect the device and user data from potential threats.
To autologin when booting to console (runlevel 3), edit /etc/inittab. Something like this:
c1:12345:respawn:/sbin/agetty --autologin <username> --noclear 38400 tty1 linux
--noclear 38400 tty1 linux
Consult the respective display manager docs to autologin when booting to runlevel 4 with a display/login manager. With sddm that comes packaged with Slackware, edit /etc/sddm.conf:
Code:
[Autologin]
User=<username>
There is no requirement to directly edit /etc/sddm.conf. Autologin can be configured with the KDE System Settings tool, Startup and Shutdown --> Login Screen (SDDM) --> Behavior button.
Most display/login managers support autologin and password-less logins. Some display/login managers are designed not to support root logins. Logging in as root with sddm is supported.
Surfing the web without credentials is straightforward because most web browsers support storing credentials. Similarly, email clients support storing credentials too.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.