Let's say that durring install, I selected the encrypt your home dir. Can an attacker boot the system into a root console or single user console or recovery console and change your password and then boot normally and log into your encrypted home. I know that on Ubuntu systems one can just edit grub to boot to recovery/root console and change passwords, I know because I did this years ago back in the 9.10 or earlier days. So what's the point of encrypting the home dir.
Hopefully someone will tell me that even if root changed the user password they would still need the decryption passphrase to decrypt home. Kinda like 2 factor authentication.