I leave my box running pretty much 24/7, (Barring powercuts.
) I wouldn't do that if I wasn't confident that is was secure.
The box is behind a hardware firewall and NAT, it has it's own firewall running (which only lets in SSH), and SELinux also running on 'Enforcing'.
I could do better to secure it by shutting down some of the services I don't use frequently (or at all).
Whenever I leave it, I lock the screen, and my password is a string of random characters. (As is the root password. No, it's not the same characters). Yes I remember mine, I just have to learn the root password for the few times I use it.
I have enabled shadow passwords and keep fairly up to date.
The BIOS and GRUB do not have passwords, however.
I feel I'm better protected than the average user, however I do think I could do more to better protect myself.
Now, big question. Have I missed the point here?