On Sunday 20 December 2015 22.19:06 Lisi Reisz wrote:
> > > Why does root's password need to be
> > > stronger, since the user has full root privileges???
> > >
> > > Lisi
> >
> > Good question Lisi, one I've yet to hear a good explanation for from the
> > bunto folks, and I did ask a couple times in the past. Should I make the
> > pw I use just as obtuse & long?
>
> Yes!!!
>
> Lisi

While this has nothing to do with TDE, that is my main reason for sticking to 
the "old" user/root system. Windows users mostly don't use a superuser 
(although they could) because it's "complicated". Mac users "have no root", 
but that means that if they use an easy password (I should not say, but I 
can't move my wife from 654321 ...), anyone having access to their computer 
can turn root on and lock them out.

Same with Linux: if I can easily guess someone's user password and he has sudo 
rights, then sudo passwd root  and sudo passwd <user>: I'm the boos and he's 
out.

So, as long as sudo users don't use strong password (and most I know 
_don't_ ), a separate root password is more secure.

Thierry