From owner-freebsd-questions Sun Jun 14 23:24:07 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id XAA18808 for freebsd-questions-outgoing; Sun, 14 Jun 1998 23:24:07 -0700 (PDT) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from lucy.bedford.net (lucy.bedford.net [206.99.145.54]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id XAA18765 for ; Sun, 14 Jun 1998 23:23:58 -0700 (PDT) (envelope-from listread@lucy.bedford.net) Received: (from listread@localhost) by lucy.bedford.net (8.8.8/8.8.8) id BAA23740; Mon, 15 Jun 1998 01:58:27 -0400 (EDT) (envelope-from listread) Message-Id: <199806150558.BAA23740@lucy.bedford.net> Subject: Re: Diskless Wkstns In-Reply-To: <01BD97EA.B8F29910@greeves.mfn.org> from greeves at "Jun 14, 98 11:18:20 pm" To: sysadmin@mfn.org (greeves) Date: Mon, 15 Jun 1998 01:58:27 -0400 (EDT) Cc: freebsd-questions@FreeBSD.ORG X-no-archive: yes Reply-to: djv@bedford.net From: CyberPeasant X-Mailer: ELM [version 2.4ME+ PL38 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG greeves wrote: > (3) I know that the "Read Only /usr" topic has been bantered back and > forth (to *death*) on the list, so realize I dont care whether it's a standards Nah, he's just been roughed up a little -- a fat lip and a loose tooth. I'm sure he'll eventually stagger back into the ring. > thing or not, I just want to know what filesystems I can *safely* mount read > only: if this means /, /usr/ /tmp, /whatever, it's all good. I just need to know > what *NOT* to place the RO attributes on... Must-writes: /tmp /var Maybe-writes: /home There's root's home dir, which you may or may not need writable. I think the rest can be RO. Try it and see what squeals. Dave -- http://www.microsoft.com/security: `Microsoft Windows NT Server is the most secure network operating system available.' Don Quixote: `You are mistaken, Sancho.' To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message