Currently Being ModeratedJul 19, 2012 10:55 AM (in response to mknabster)
I'm not sure I understand your reasoning.
As a file server, no user needs to be logged in at all. The file server runs as a background process and doesn't need any logged in user.
As for LogMeIn, I can't think that's a wise reason to leave a user logged in, if for no other reason it creates an extra barrier to malicious users. Think about you. You've stated you don't use a VPN and you use LogMeIn which means that you have your server's proverbial *** hanging out in the wind. Any user can hit your server if they guess the LogMeIn credentials. Once they do they're given complete, unfettered access to your desktop, applications, data, etc.? oh my. Another username and password required to log into the desktop would be the very least I'd consider, with moving the entire thing behind a VPN connection being a priority.
In any case, what's the hardship in putting in your username and password after a scheduled wake, anyway?
Currently Being ModeratedJul 19, 2012 11:03 AM (in response to Camelot)
Well, this server is just for home use, i don't have any worry about anyone else, especially since my family members don't know how to use Macs very well. The reason i was asking was because with logmein, if the computer is on but the login window is showing, logmein will see the computer as being off in the my computer list online, so that's the reaosn why i would like it to enable auto login, or i can't use it. Having this is more of a learning experience for me, it's my first server and i'm trying to learn what all i can do with it, even though i practically have no need for it, though the file server is nice to have. Like right now, i'm having issues with 2 Windows 7 machines not being able to see the server, despite the other 7 computers do. So i need the access to it from elsewhere, until i figure out how to get a VPN setup.
Currently Being ModeratedJul 21, 2012 11:56 PM (in response to mknabster)
Well, this server is just for home use, i don't have any worry about anyone else,
A common misconception, and one you would do well to get over. Soon.
Sure, you might not think you have to worry about this, but the moment you open your server to the outside world, you're going to get attacked - or, maybe 'probed' is a better term - by people (or, more likely, bots) looking to see what's out there. Sure, most of them are opportunistic - they don't know who you are, or what you're hiding, but that doesn't stop them looking.
All it takes is one weak username and password and they're in.
Sure, you say, there's nothing on this server that I care about, but you'd be wrong. If someone compromises the machine you have to assume that all the data on that machine is compromised. That's every login - and not just to this machine, but logins stored within browser settings, too, every file, The whole enchilada.
Then, once they've compromised that machine they're going to look at what else is on the LAN that might be a ripe target. Oh, that iMac the kids use? easy (kids have no cocept of password security). That Windows 7 system your wife uses? that's easy, too (you already said no one else in the house has much of a clue about security).
So now all the other machines in your network are compromised - every login, every password, every file on all your machines are, essentially, public records now.
And even if, let's say, there really is no data on any of these machines that you care about, you're still not safe.
Once the intruder has expoited the file system he's free to setup whatever bot he likes - maybe he'll setup a spam bot and use your internet connection to send out spam. Maybe he'll use you as a relay for his next attack, so you appear to be the one doing the attacking. The list goes on.
So my point is that internet security is a big deal. Don't think that you have 'nothing worth protecting' because it's just not true for 99.999% of people. Are you really the 0.0001%?
As for logmein, I've never used it, but if it requires you to leave an open desktop running in order to connect then that, alone, is reason for me to trash it. There are better alternatives out there.