• HexKay [none/use name]@hexbear.net
    link
    fedilink
    arrow-up
    4
    ·
    4 months ago

    As long as you have to put in your password when you enable this I feel like it’s fine. There’s plenty of times, especially on Linux, where the user has to bypass security limitations to do this (sudo being the most obvious example)

    • KubeRoot@discuss.tchncs.de
      link
      fedilink
      English
      arrow-up
      4
      ·
      4 months ago

      The issue is, when doing sudo, you have to put in the password when doing sudo. In this case, you put in your password, some flag is set, the computer does a full reset, and then after it reads the flag and decides to bypass the password system. That sounds like just a step away of figuring out how to set this flag without a password to bypass logging in.