Greets Sirs!

Sorry for a bit newbie question, but this net-wide rumored FBI decrypt failure,link2 made me think, software made data encryption can be quite safe.

Would enquire, if you find a standard user's auto login dangerous, if

- important passwords/passphrases (for Web pages and encrypted partitions) are intentionally not cached / being memorized by system, but safely kept in a secure database (with e.g. KeePass), and I manually enter these keys when needed
AND
1- HD data partition are encrypted - with Debian's installation tool
2- HD data partition are encrypted - with 3rd party tools (e.g.TrueCrypt)

So overall, do you recommend
- an encrypted data partition
- with standard user auto-login if all sensitive data require pwds / keys?
----
Also, what do you think about those FBI hackers' rumor?

Many thanx,
Bye.

I'd worry more about professional criminals myself.

Generally autologin is a security issue when someone has physical access or some process is available to be run remotely. If one has physical access it makes little difference since one can fully exploit the system. $9000 hacking machines could break into almost any encryption locally.
Services in linux may or may not be available to expose the system even if no user is logged on.

Security is a set of tools that if used as best as one can, would defend against threats.