By default, the Ubuntu installer will give a machine a host name of "user-desktop," where "user" is the name of the account created during install. I was wondering if this poses any kind of security risk, because it would give attackers a valid account name that they can use in conjunction with password brute-force attacks against ssh and so on. Aren't we making it easier for attackers by advertising the name of the default user account? Or is this not really something to be worried about?
Bookmarks