How secure is the login password?
How secure is /etc/shadow really? What kind of hash function does the system use to secure the passwords and how secure is it really?
I've read that the KDE folks say that using the same password for kWallet and for the user is insecure (Gnome keyring unlocks all of the passwords when you log in). Is this really insecure?
How easy is it to break a user login password? I presume that a short an easy password consisting of letters only can be found in rainbow tables (thou using salt probably helps mitigate this).
Let's say I use a 12 character password consisting of small and capital letters, numbers and special characters. This should be hard to brute force or find in any rainbow tables if it's properly selected, right?