From owner-freebsd-current@FreeBSD.ORG  Tue Sep 27 08:53:32 2011
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id A43681065672
	for <freebsd-current@freebsd.org>; Tue, 27 Sep 2011 08:53:32 +0000 (UTC)
	(envelope-from mueller6727@bellsouth.net)
Received: from fmailhost05.isp.att.net (fmailhost05.isp.att.net
	[204.127.217.105])
	by mx1.freebsd.org (Postfix) with ESMTP id 942198FC14
	for <freebsd-current@freebsd.org>; Tue, 27 Sep 2011 08:53:32 +0000 (UTC)
Date: Tue, 27 Sep 2011 08:48:08 +0000 (GMT)
X-Comment: Sending client does not conform to RFC822 minimum requirements
X-Comment: Date has been added by Maillennium
Received: from localhost (adsl-68-210-187-7.sdf.bellsouth.net[68.210.187.7])
	by isp.att.net (frfwmhc05) with SMTP
	id <20110927084808H05001nkfre>; Tue, 27 Sep 2011 08:48:08 +0000
X-Originating-IP: [68.210.187.7]
From: "Thomas Mueller" <mueller6727@bellsouth.net>
To: freebsd-current@freebsd.org
References: <201109262035.OAA17199@lariat.net>
Message-Id: <20110927085332.A43681065672@hub.freebsd.org>
Subject: Re: Experiences with FreeBSD 9.0-BETA2
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>, 
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 27 Sep 2011 08:53:32 -0000

>From Brett Glass <brett@lariat.net>:

> Unfortunately, due to past history, /usr is mixed-use. It normally
> contains both configuration information -- e.g. /usr/local/etc --
> and more volatile data such as users' home directories. This
> prevents /usr/local/etc, which also contains mission-critical
> configuration information, from being protected if you just protect
> /. Some proprietary Unices have fixed this historical flaw in the
> traditional hierarchy by moving /usr/local/etc to another location
> and them symlinking it back to where seasoned administrators expect
> it to be, thus honoring POLA. The three open source, old school
> BSDs (Free, Net, Open) have not done this to date, but it's
> something that should be considered in the long run. It would
> certainly make the creation of embedded systems easier, as well as
> enhancing security in multi-user systems!

You mean users' home directories are under /usr/home rather than /home?

I believe /home is more traditional, and decidedly my preference: good to put on a separate partition so it won't be touched by a system upgrade.

Tom