There is a list of things to do to secure an Ubuntu install here: http://ubuntuguide.org/wiki/Dapper#What_are_the_basic_things_I_need_to_know_about_securing_my_Ubuntu
It recommends disabling the root account with "sudo passwd -l root". The behaviour of sulogin negates the benefits of this advice. Complete security is impossible, but that doesn't mean there is no point trying to make the system as secure as is possible. -- on fscheck a root shell is presented without password https://launchpad.net/bugs/66001 -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
