Hi,
I got a quick question because I fucked up and think quite a bunch of
other people I have read about here did as well.
I read in a couple of postings that people like to mount their root
partition as read-only, I followed that since it prevents accidents in
combination of 'rm' with '*' and
Obviously they can't get chmod/chown if / is ro, thus ripping a huge
local security hole into the system.
You could place /dev on a mfs and copy/unarchive/MAKEDEV there.
Andreas Bihlmaier wrote:
Hi,
I got a quick question because I fucked up and think quite a bunch of
other people I have read about here did as well.
I read in a couple of postings that people like to mount their root
partition as read-only, I followed that since it prevents accidents in
Whey I mailed here is:
Is it good practice at all to mount / read-only?
You should place /dev and /var on other partitions like mfs based ones.
See
http://blog.innerewut.de/articles/2005/05/14/openbsd-3-7-on-wrap
Regards,
ahb
Jonathan
--
Jonathan Weiss
http://blog.innerewut.de
If / is the only thingee that is read only,
I don't think that buys anything worthwhile.
It's one less fsck needed after an unclean shutdown, if nothing else..
This can be quite useful on boxes with unreliable power if you know you
don't need to write to the partition.
It also helps keep
5 matches
Mail list logo
