Autologin, passwordless login and controlling who can reboot and shutdown your computer in KDE

Login Screen Passwordless Caution

Autologin and passwordless login play a critical role in the physical security posture of your computer. In KDE, they are very easy to configure. But being easy to configure does not mean that you should. Why?

For one, enabling autologin makes it super easy for anybody with physical access to your computer to login, without making the required stop at the login screen. So it is generally a bad idea to enable it. If you can create a temporary user account, one with no management privileges whatsoever, then you might think about enabling autologin or even passwordless login for that account.

From a security perspective, passwordless login falls in the same category as autologin. It is, therefore, not recommended to enable it for an account with management privileges. Save this feature for a temporary or guest account with no management privileges.

But if you are in a situation where enabling these two features pose no security risk, the rest of this tutorial shows how to enable them. The tool to use for this exercise is called Login Screen. You will find in System Settings, under System Administration. Though this tutorial was written on Chakra Archimedes, the latest edition of Chakra, the steps are the same for any distribution using KDE.
KDE System Settings Login Screen

Related Post:  Chronicles of SELinux: Dealing with web content in unusual directories

Note that Login Screen is the graphical interface to kdmrc, the main configuration file for kDM, KDE’s login manager, and modifying the default settings in Login Screen overwrites the original settings in kdmrc. Because kdmrc is heavily commented, it might be a good idea to save a copy. To do that, open a shell terminal and as root, type cp /usr/share/config/kdm/kdmrc /usr/share/config/kdm/kdmrcOLD. With that out of the way, now to Login Screen. When it is open, click on the Convenience tab.

If you need to enable autologin, this is where you do it. After enabling it, select the user you want to auto login from the User dropdown menu. Click apply. To check that it works (it should), reboot the computer.
Login Screen Autologin

This screen shot was taken from the official documentation of KDM. Though the last sentence gives the impression that your computer at home is not in a critical environment, I beg to differ. It might not be critical to any other person, but to you it is, or it should be. Keep that in mind when enabling autologin.
Login Screen Autologin Caution

The information on this screen shot, taken from the official help page on passwordless login, offers a better advice, in line with my earlier comments in the beginning of this article..
Login Screen Passwordless Caution

Related Post:  Use GRUB-Customizer to give GRUB a prettier face on Linux Mint 17.1

Passwordless login is enabled from the Convenience tab too. Enable it and then select the user account that you want to login without authenticating. The difference between autologin and passwordless login, is that with the latter, the user must make a stop at the login screen. To login, all the person needs to do, is press the Enter key on the keyboard.
Login Screen Passwordless Login

Aside from autologin and passwordless login, the other feature that you might want to modify, is who can reboot or shutdown the computer from the login screen. By default, everybody can, but only root is allowed to do it remotely. Modifying the default behavior is also accomplished from Login Screen, but this time, from the Shutdown tab.

If your computer is one that you do not want anybody to reboot or shutdown at will, the best thing to do is select “only root” from the Local dropdown menu. For Remote, it is better to disallow this feature for any user, including root. Enable it only when the computer needs to be management remotely. Even then, allowing remote reboot for root is not recommended.
Login Screen Reboot Shutdown

Share:

Share on facebook
Facebook
Share on twitter
Twitter
Share on pinterest
Pinterest
Share on linkedin
LinkedIn

Hola! Did you notice that LinuxBSDos.com no longer run network ads?  Yep, no more ads from the usual suspects that track and annoy you across the Internet. But since I still need to pay to keep the site running, feel free to make a small donation by PayPal or your favorite cryptocurrency.

  • Bitcoin
  • Ethereum
  • Xrp
  • Bitcoin cash
  • Bitcoin sv
  • Litecoin
  • Binance coin
  • Cardano
  • Ethereum classic
Scan to Donate Bitcoin to bc1qzvlte2m224zkayhdc7fdfjkp2rsgt0l5a496ua

Donate Bitcoin to this address

Scan the QR code or copy the address below into your wallet to send some Bitcoin

Scan to Donate Ethereum to 0x0F4362DFF77F3Ba0Dc637F5f3Eba35D09a2fA60C

Donate Ethereum to this address

Scan the QR code or copy the address below into your wallet to send some Ethereum

Scan to Donate Xrp to r4ggjvL36njsMCYTkJ3S7cTHscPsMsSGQv

Donate Xrp to this address

Scan the QR code or copy the address below into your wallet to send some Xrp

Scan to Donate Bitcoin cash to qrs0dedzp9t55af3nfwypydghp29r0xguy9s20fz2k

Donate Bitcoin cash to this address

Scan the QR code or copy the address below into your wallet to send some Bitcoin cash

Scan to Donate Bitcoin sv to 15K9TLyVDBtLuG9cYvXCX9SSkq9C9oUKHK

Donate Bitcoin sv to this address

Scan the QR code or copy the address below into your wallet to send some Bitcoin sv

Scan to Donate Litecoin to LetJ9QQMb7u2LMZ9Tu6rtHwcBcQFW98fbG

Donate Litecoin to this address

Scan the QR code or copy the address below into your wallet to send some Litecoin

Scan to Donate Binance coin to bnb1ga8trq08ssqepd90v6225nzfgy448pu5pw8gxp

Donate Binance coin to this address

Scan the QR code or copy the address below into your wallet to send some Binance coin

Scan to Donate Cardano to addr1qx2354yw49etstfljpdhwja3ajjlt487lg95vu9ngy2q6vu4rf2ga2tjhqknlyzmwa9mrm997h20a7stgectxsg5p5esq5l7d9

Donate Cardano to this address

Scan the QR code or copy the address below into your wallet to send some Cardano

Scan to Donate Ethereum classic to 0xcD6CC972a2297FcafACDcfE042C55C69516a9264

Donate Ethereum classic to this address

Scan the QR code or copy the address below into your wallet to send some Ethereum classic

Subscribe for updates. Trust me, no spam!

Sponsored links

1. Attend Algorithm Conference, a top AI and ML event.
2. Reasons to use control panel for your server.
3. DHgate Computers Electronics, Cell Phones & more.

Upcoming events

2 Responses

  1. This is pretty dumb. There’s no point in disabling the ability of a local person to reboot or shutdown the computer, unless that computer locked up in a cabinet somehow. If I can’t turn off the computer using the mouse, I’ll just press the power button.

Leave a Reply

Your email address will not be published. Required fields are marked *

Get the latest

On social media
Via my newsletter

Partner links

1. Attend Algorithm Conference, a top AI and ML event for 2021.
2. Reasons to use control panel for your server.
3. DHgate Computers Electronics, Cell Phones & more.
Hacking, pentesting distributions

Linux Distributions for Hacking

Experts use these Linux distributions for hacking, digital forensics, and pentesting.

Categories
Archives

The authors of these books are confirmed to speak during

Algorithm Conference

T-minus AI

Author was the first chairperson of AI for the U.S. Air Force.

The case for killer robots

Author is the Director of the Center for Natural and Artificial Intelligence.

Why greatness cannot be planned

Author works on AI safety as a Senior Research Scientist at Uber AI Labs.