From owner-freebsd-current  Wed Oct  6  4:25:36 1999
Delivered-To: freebsd-current@freebsd.org
Received: from out0.mx.skynet.be (out0.mx.skynet.be [195.238.2.35])
	by hub.freebsd.org (Postfix) with ESMTP id 3F48C150EE
	for <freebsd-current@FreeBSD.ORG>; Wed,  6 Oct 1999 04:25:30 -0700 (PDT)
	(envelope-from root@foxbert.skynet.be)
Received: from foxbert.skynet.be (foxbert.skynet.be [195.238.1.45])
	by out0.mx.skynet.be (8.9.3/odie-relay-v1.0) with ESMTP id NAA04442;
	Wed, 6 Oct 1999 13:25:13 +0200 (MET DST)
Received: (from root@localhost)
	by foxbert.skynet.be (8.9.1/jovi-pop-2.1) id NAA16666;
	Wed, 6 Oct 1999 13:25:11 +0200 (MET DST)
Mime-Version: 1.0
X-Sender: blk@foxbert.skynet.be
Message-Id: <v04205500b420d230e6ff@[195.238.21.204]>
In-Reply-To: <Pine.BSF.4.05.9910051831180.6368-100000@fw.wintelcom.net>
References: <Pine.BSF.4.05.9910051831180.6368-100000@fw.wintelcom.net>
Date: Wed, 6 Oct 1999 12:22:47 +0200
To: Alfred Perlstein <bright@wintelcom.net>,
	peter.jeremy@alcatel.com.au
From: Brad Knowles <blk@skynet.be>
Subject: Re: make install trick
Cc: freebsd-current@FreeBSD.ORG
Content-Type: text/plain; charset="us-ascii" ; format="flowed"
Sender: owner-freebsd-current@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

At 6:33 PM -0700 1999/10/5, Alfred Perlstein wrote:

> Which isn't an option unless you dedicate a partition for /tmp
> which is pretty wasteful imo.

	Forgive me if I'm misunderstanding something here, but isn't 
having /tmp on the root filesystem just inviting a denial-of-service 
attack on yourself?  It's bad enough when programs crap out when /tmp 
is full and they can't create the temporary files they demand (vi 
leaps to mind), but when you fill up the root filesystem and the 
whole machine falls over, that seems to be a really bad situation 
that everyone would want to avoid at virtually all costs.

	It was my understanding that it was standard recommended practice 
practice pretty much across the board to create the following 
separate filesystems:

		/
		/tmp (perhaps an mfs, perhaps softupdates, or whatever)
		/usr
		/var
		/var/tmp
		/home (or wherever you're going to store user directories)

	And that most people also then created a separate filesystem for 
/usr/local or /opt, or wherever they're going to store the additional 
system programs that they're going to be adding.

	This also allows you to do nice security things such as mounting 
/tmp, /var, /var/tmp nosuid, etc....


	Is there something fundamental I'm missing here?  I thought that 
this sort of thing was taught in SysAdmin 101....

-- 
   These are my opinions -- not to be taken as official Skynet policy
  ____________________________________________________________________
|o| Brad Knowles, <blk@skynet.be>            Belgacom Skynet NV/SA |o|
|o| Systems Architect, News & FTP Admin      Rue Col. Bourg, 124   |o|
|o| Phone/Fax: +32-2-706.11.11/12.49         B-1140 Brussels       |o|
|o| http://www.skynet.be                     Belgium               |o|
\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/
  Unix is like a wigwam -- no Gates, no Windows, and an Apache inside.
   Unix is very user-friendly.  It's just picky who its friends are.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message