Language Selection

English French German Italian Portuguese Spanish

Auto-Login in openSUSE: bad practice

Filed under
SUSE

In openSUSE there is a feature called Auto-Login. In short it means that the root can decide which user account should be started as default upon boot, without displaying a login prompt. If you are the only user on a system it might come in handy as you don’t have to type your password each time. Moreover, when installing openSUSE this option is enabled by default.

Though for me it is a possible weakness in my security management. People call me paranoid, I call it common sense and good practice. I’m the only user on my system, but from time to time I have guests in my house (that I both know very good and less good). Auto-Login would mean that they just have to push the power button to have access to almost all my data.

More Here




More in Tux Machines

The Licensing and Compliance Lab interviews François Marier, creator of Libravatar

In this edition, we conducted an email-based interview with François Marier, a free software developer from New Zealand. He is the creator and lead developer of Libravatar. In addition to his passion for decentralization, he contributes to the Debian project and volunteers on the FSF licensing team. Libravatar is a free network service providing profile photos for a number of Web sites, including bugs.debian.org and git.kernel.org. Its flexible architecture allows end users to host their own images and allows Web sites to use Gravatar as a fallback when necessary. It is licensed under the GNU Affero General Public License version 3, or end user can opt for any later version (GNU AGPLv3+). Read more

Traditional Management Structure Is Obsolete, Red Hat CEO Says

An outspoken champion of that message is Jim Whitehurst, president and CEO of Raleigh-based Red Hat Software, the high-profile, $10 billion provider of open source software to the enterprise community. In his new book, “The Open Organization: Igniting Passion and Performance,” Whitehurst argues that “Red Hat is the only company that can say that it emerged out of a pure bottom-up culture—namely, the open source ethos—and learned how to execute it at scale.” Read more

Conservancy Seeks Your Questions on GPL Enforcement

Historically, Conservancy has published extensive materials about enforcement of the GPL, including blog posts, announcements regarding compliance actions, many sections appearing in the definitive Copyleft Guide (a joint initiative with the Free Software Foundation). After Conservancy's recent announcement of its funding of Christoph Hellwig's lawsuit against VMware, Conservancy has sought to answer as many questions as possible about GPL enforcement. Read more

SourceForge locked in projects of fleeing users, cashed in on malvertising [Updated]

The takeover of the SourceForge account for the Windows version of the open-source GIMP image editing tool reported by Ars last week is hardly the first case of the once-pioneering software repository attempting to cash in on open-source projects that have gone inactive or have actually attempted to shut down their SourceForge accounts. Over the past few years, SourceForge (launched by VA Linux Systems in 1999 and now owned by the tech job site company previously known as Dice) has made it a business practice to turn abandoned or inactive projects into platforms for distribution of "bundle-ware" installers. Despite promises to avoid deceptive advertisements that trick site visitors into downloading unwanted software and malware onto their computers, these malicious ads are legion on projects that have been taken over by SourceForge's anonymous editorial staff. SourceForge's search engine ranking for these projects often makes the site the first link provided to people seeking downloads for code on Google and Bing search results. And because of SourceForge's policies, it's nearly impossible for open-source projects to get their code removed from the site. SourceForge is, in essence, the Hotel California of code repositories: you can check your project out any time you want, but you can never leave. Read more [Ed: Why am I not surprised?]