On Wed, Sep 19, 2007 at 03:06:39AM -0400, Aaron Kulkis wrote: > > Keep AS MUCH AS POSSIBLE off of / -- the less other filesystems > are on the root filesystem, the less chance there is of this > most crucial filesystem from being corrupted when shit happens.
That is very sound advice. In addition, user-writeable directories (/home, /tmp, /var/tmp) should not reside on the same fs as binaries, as this is a security problem -- at least on systems where you do not fuully trust each user. That said, I tend to violate these priciples for standard workstations. I have quite a lot of them, and in case of trouble, I will simply re-install from an image. A. -- Ansgar Esztermann Researcher & Sysadmin http://www.mpibpc.mpg.de/groups/grubmueller/start/people/aeszter/index.shtml
pgpBSPbw8v3nL.pgp
Description: PGP signature
