[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [linux-lvm] LILO configuration for LVM "boot" filesystem



> > > Use separate mount points for /var, /usr & /home.  This keeps root down
> > > to mainly /etc, /dev, /bin, /sbin and /lib -- none of which is all that
> > > enormous.  Short of writing the File From Hell to /tmp a 128MB root
> > > file system works well enough for me.  I do put /usr & /opt on LVM but
> > > only because all the tools needed to revive the system are in /bin,
> > > /sbin & /lvm on the root.
> >     After installation, do:
> > cd / ; mv tmp tmp.old ; ln -s /var/tmp .  reboot rm -rf /tmp.old
> >     Now you don't have to worry about root filling up at all...
> 
> er... I wouldn't do that (at least not on a Debian system).
> 
> Usually /var/tmp is _assumed_ to be only root-writeable, so all sorts of
> daemons and programs running as root put their stuff there. This could open
> a number of security holes, when /var/tmp doesn't get treated as carefully
> as /tmp.

then debian butchered the SVR4 file system layout.  whole idea 
of having /boot and /var was to make sure that diskless systems
that nfs-ed everything else could count on having local storage
in /var and a minimal amount of anything required in /boot.

just about everything else on the planet assumes that /var/tmp
is a replacement for /tmp and should 01777...

-- 
 Steven Lembark                                   2930 W. Palmer St.
                                                 Chicago, IL  60647
 lembark wrkhors com                                   800-762-1582


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]