On Mon, Jul 14, 2008 at 6:13 PM, Kalle Happonen <<a href="mailto:kalle.happonen@iki.fi">kalle.happonen@iki.fi</a>> wrote:<br><div class="gmail_quote"><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div class="Ih2E3d">thomasg wrote:<br>
> On Mon, Jul 14, 2008 at 5:22 PM, arne anka <<a href="mailto:openmoko@ginguppin.de">openmoko@ginguppin.de</a><br>
</div><div><div></div><div class="Wj3C7c">> <mailto:<a href="mailto:openmoko@ginguppin.de">openmoko@ginguppin.de</a>>> wrote:<br>
><br>
> > Of course you can create another user, as you are used to on any<br>
> unix<br>
> > system.<br>
> > It just doesn't ship with one because the distro comes in<br>
> ready-to-deploy<br>
> > images, not with a installer like the binary-distro-people are<br>
> used to.<br>
><br>
> sure? i think it possible that some things won't work when<br>
> non-root ...<br>
><br>
><br>
> Of course some things won't work - if they would, there would be no<br>
> need for a special root account.<br>
> Basically all the tools someone would use without a terminal should<br>
> work (dialer, contacs, ...) no matter what stack is used.<br>
> The daemons that need root access run in background and can be<br>
> controlled by userspace-programs without root-access.<br>
><br>
> If of course would take a loginmanager or similar to use a user with<br>
> password at startup, because currently the user root is automatically<br>
> logged in. Should be easy to "fix".<br>
</div></div>Even running only critical things as root, and most stuff on a<br>
no-password unprivileged account would be better. But an user account<br>
with a password a would of course be better. The I'd say that the PIN<br>
could almost be saved somewhere, to avoid the need for a double log-in.</blockquote><div><br>I had some thoughts about that, too.<br>Would be cool if it wasn't necessary to have a PIN at all - you enter the PIN in the "first-run-wizard", that will store it.<br>
After that you only have one password (of your choise) that does all - the security daemon would lookup in a key/password-database and use your password for all things, like decrypting the other containers (phonebook, messages, e.g.), authing you on the network with the stored pin, unlocking the phone screen, .....<br>
</div></div>