Spouse and I are arguing about whether to use a Windows password/pin and possibly BitLocker (see current security config here, basically the same on both computers). Strictly in terms of preventing remote hackers/malware from harming our PCs, what's the highest necessary level of password hygiene? One of us wants to go full on BitLocker with foil hat level password security and so forth, the other isn't convinced that passwords provide any sort of impediment to malware and remote hackers, and thinks at most the admin account should have a strong password and 4 digit pin, while the standard user accounts we both browse on don't need passwords.
We both agree that we have taken sufficient precautions that the physical security of the laptops isn't of concern, beyond having to buy a new one if it's stolen of course. Feel free to pitch scenarios involving physical access to us if you think there's somewhere we're vulnerable, but I'd prefer to keep the discussion to whether and how the aforementioned security features stop malware and remote hackers only.
We both agree that we have taken sufficient precautions that the physical security of the laptops isn't of concern, beyond having to buy a new one if it's stolen of course. Feel free to pitch scenarios involving physical access to us if you think there's somewhere we're vulnerable, but I'd prefer to keep the discussion to whether and how the aforementioned security features stop malware and remote hackers only.