linux-workstation-security.md needs an update review

[herlo]

From a coworker:

- password crackers now support passphrase attacks, so a random password is the most secure option
- disabling the root account entirely and using sudo is preferable to having it enabled```