Isn’t it enough to just enter your password once to login, then receive a warning whenever you’re about to do something potentially dangerous?

If it’s such a big security risk, how come the most popular and widely used operating systems in the world and their users seem to be unaffected by it?

I guarantee, most new users coming to Linux from Windows/macOS are going to laugh and look at you funny if you try to justify entering your password again and again and again.

  • originalucifer
    link
    fedilink
    296 months ago

    microsoft doesnt want to annoy people, but in a corporate environment this requirement is fully implemented on windows.

    i was never under the impression macs belonged in a business environment. maybe apple just doesnt find that level of security important.

    • @john89@lemmy.caOP
      link
      fedilink
      -46 months ago

      Thank you for the informative response. I was unaware Windows machines employed similar behavior in corporate environments.

      Do you think, then, that it would be acceptable for Linux to remove these restrictions in home environments?

      • @pmk
        link
        126 months ago

        You are more than welcome to remove the need for any passwords at all on the linux systems you admin. Good thing about free software is that you decide how you want it, hack up or put up.

      • originalucifer
        link
        fedilink
        86 months ago

        no. no reason to expand poor practices into linux because microsoft fucked up. we need ‘least access required’ methodology even at home because the world is full of bad actors.

        if microsoft had correclty implemented security into dos/winx.x we wouldnt have had half the virus issues we did in the late 90s.

        i think the other half was caused by activex

      • @verdigris@lemmy.ml
        link
        fedilink
        46 months ago

        It’s Linux. You can remove the restriction yourself.

        It’s not that hard to either give your user account perma-sudo or to remove the timeout so you only have to enter the password once per login. Slightly more involved would be manually changing which actions require root authentication.