Right and this is why I wasn't wanting to login in as root, but merely separate the root and user passwords because it seem to that if a malicious user got a hold of the user password and without a separate password for root, he could do all sorts of damage.clem wrote:I'm not an expert on security but I would say file permissions are definitely a problem for potential viruses. When you run something (that you want to run by typing it, or that you don't really know you're running by clicking on it somewhere.. ), that something runs with your rights and permissions, so if that something tries to delete files it is the same as if you tried to delete them yourself... and if you're logged in as a user, you can only delete your own files... but if you're logged in as root, then you can potentially delete everything.
And it's not only viruses, but also user mistakes and bugs. If you keep a clear separation between user data and system, you're less exposed to system-wide problems.
Users browsing this forum: Exabot [Bot] and 4 guests