I specifically address this in the video, there is a difference between something running as root and CONFIGURING your machine to log in automatically. Autologin is a convenience feature, not inherently insecure if configured properly. By enabling passwordless autologin, you're essentially trusting the physical security of the machine. The system assumes that the physical environment is secure enough to allow autologin. Even with passwordless autologin, processes spawned in the user session are subject to standard Linux user permissions. Also with PAM you can make it autologin into a restrictricted user with fewer permissions.
arch is awesome
holy ISO
So X11 is insecure because it runs as root, but remote passwordless autologin to Wayland is secure?
I specifically address this in the video, there is a difference between something running as root and CONFIGURING your machine to log in automatically. Autologin is a convenience feature, not inherently insecure if configured properly.
By enabling passwordless autologin, you're essentially trusting the physical security of the machine. The system assumes that the physical environment is secure enough to allow autologin. Even with passwordless autologin, processes spawned in the user session are subject to standard Linux user permissions.
Also with PAM you can make it autologin into a restrictricted user with fewer permissions.