From owner-freebsd-current@FreeBSD.ORG Tue Sep 27 09:15:54 2011 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id BC12C1065673 for ; Tue, 27 Sep 2011 09:15:54 +0000 (UTC) (envelope-from Holger.Kipp@alogis.com) Received: from alogis.com (firewall.solit-ag.de [212.184.102.1]) by mx1.freebsd.org (Postfix) with ESMTP id 2A1898FC17 for ; Tue, 27 Sep 2011 09:15:53 +0000 (UTC) Received: from msx3.exchange.alogis.com (msx3exchange.alogis.com [10.1.1.6] (may be forged)) by alogis.com (8.13.4/8.13.1) with ESMTP id p8R9FnVe088695; Tue, 27 Sep 2011 11:15:49 +0200 (CEST) (envelope-from Holger.Kipp@alogis.com) Received: from MSX3.exchange.alogis.com ([fe80::c8ed:428a:a157:b61]) by msx3.exchange.alogis.com ([fe80::c8ed:428a:a157:b61%13]) with mapi id 14.01.0255.000; Tue, 27 Sep 2011 11:16:30 +0200 From: Holger Kipp To: Thomas Mueller , "freebsd-current@freebsd.org" Thread-Topic: Experiences with FreeBSD 9.0-BETA2 Thread-Index: AQHMfFVBheFJvg7TBEucKES5MrUURpVf0vqAgAAqOwCAAPDxv///474A Date: Tue, 27 Sep 2011 09:16:30 +0000 Message-ID: <891DD4D9-7138-4D4B-8108-C0C731694A59@alogis.com> References: <201109262035.OAA17199@lariat.net> <20110927085332.A43681065672@hub.freebsd.org> In-Reply-To: <20110927085332.A43681065672@hub.freebsd.org> Accept-Language: en-GB, de-DE, en-US Content-Language: de-DE X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.1.1.4] Content-Type: text/plain; charset="us-ascii" Content-ID: <316C15BD9F7D57408D8E655F71186C7C@exchange.alogis.com> Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 Cc: Subject: Re: Experiences with FreeBSD 9.0-BETA2 X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 27 Sep 2011 09:15:54 -0000 Am 27.09.2011 um 10:48 schrieb Thomas Mueller: >> From Brett Glass : > >> Unfortunately, due to past history, /usr is mixed-use. It normally >> contains both configuration information -- e.g. /usr/local/etc -- >> and more volatile data such as users' home directories. This >> prevents /usr/local/etc, which also contains mission-critical >> configuration information, from being protected if you just protect >> /. Some proprietary Unices have fixed this historical flaw in the >> traditional hierarchy by moving /usr/local/etc to another location >> and them symlinking it back to where seasoned administrators expect >> it to be, thus honoring POLA. The three open source, old school >> BSDs (Free, Net, Open) have not done this to date, but it's >> something that should be considered in the long run. It would >> certainly make the creation of embedded systems easier, as well as >> enhancing security in multi-user systems! > > You mean users' home directories are under /usr/home rather than /home? > > I believe /home is more traditional, and decidedly my preference: good to= put on a separate partition so it won't be touched by a system upgrade. Afaik /home has always been a symlink to /usr/home (unless you created a separate /home-partition within FreeBSD). So it is up to the admin what he chooses to do. Best regards, Holger -- Holger Kipp Diplom-Mathematiker Senior Consultant Tel. : +49 30 436 58 114 Fax. : +49 30 436 58 214 Mobil: +49 178 36 58 114 Email: holger.kipp@alogis.com alogis AG Alt-Moabit 90b D-10559 Berlin web : http://www.alogis.com ---------------------------------------------------------- alogis AG Sitz/Registergericht: Berlin/AG Charlottenburg, HRB 71484 Vorstand: Arne Friedrichs, Joern Samuelson Aufsichtsratsvorsitzender: Reinhard Mielke