since this is the default behaviour, I'd consider this somewhat critical. With Malcom's rationale, it seems wise to me, harden my notebook by setting a root password. This would mean that we need to document this somewhere.
Of course you can argue that anyone who can boot the machine effectively has root, because he can control the boot loader or boot from alternative media. So this might not be that critical. -- on fscheck a root shell is presented without password https://launchpad.net/bugs/66001 -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
