From owner-freebsd-current@FreeBSD.ORG Tue Sep 27 09:41:10 2011 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id F06B71065673 for ; Tue, 27 Sep 2011 09:41:10 +0000 (UTC) (envelope-from aakuusta@gmail.com) Received: from mail-fx0-f54.google.com (mail-fx0-f54.google.com [209.85.161.54]) by mx1.freebsd.org (Postfix) with ESMTP id 7DA568FC0C for ; Tue, 27 Sep 2011 09:41:10 +0000 (UTC) Received: by fxg9 with SMTP id 9so8902861fxg.13 for ; Tue, 27 Sep 2011 02:41:09 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=from:to:cc:subject:in-reply-to:date:message-id:references :user-agent:mime-version:content-type; bh=bywbw2pZ+MZMeuRQqHYMZxrX5VG5KtmtGhggZgVjOxE=; b=tHji46fG53yhZZJub0iBcfcCn8yjmUlFbocbaEIn2XMMvizwy5vyU/7jQmttb5qlVk 4laCQGFxgIjvh+vwfh4UgJ6jrUy2Qg1gZyOZckx7PnxFf014meUWCRDQq96XjHMCOaFg VVPlqthOghTDdsuKpaLJYWBpP0x5E8QS4GJVw= Received: by 10.223.11.27 with SMTP id r27mr9924378far.58.1317116469590; Tue, 27 Sep 2011 02:41:09 -0700 (PDT) Received: from nil (tor-exit-router40-readme.formlessnetworking.net. [199.48.147.40]) by mx.google.com with ESMTPS id m26sm23075410fac.6.2011.09.27.02.41.02 (version=SSLv3 cipher=OTHER); Tue, 27 Sep 2011 02:41:08 -0700 (PDT) From: h h To: Holger Kipp In-Reply-To: <891DD4D9-7138-4D4B-8108-C0C731694A59@alogis.com> (Holger Kipp's message of "Tue, 27 Sep 2011 09:16:30 +0000") Date: Tue, 27 Sep 2011 09:39:32 +0000 Message-ID: <868vpa5nor.fsf@gmail.com> References: <201109262035.OAA17199@lariat.net> <20110927085332.A43681065672@hub.freebsd.org> <891DD4D9-7138-4D4B-8108-C0C731694A59@alogis.com> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.0.90 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain Cc: Thomas Mueller , "freebsd-current@freebsd.org" Subject: Re: Experiences with FreeBSD 9.0-BETA2 X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 27 Sep 2011 09:41:11 -0000 Holger Kipp writes: > Am 27.09.2011 um 10:48 schrieb Thomas Mueller: > >>> From Brett Glass : >> >>> Unfortunately, due to past history, /usr is mixed-use. It normally >>> contains both configuration information -- e.g. /usr/local/etc -- >>> and more volatile data such as users' home directories. This >>> prevents /usr/local/etc, which also contains mission-critical >>> configuration information, from being protected if you just protect >>> /. Some proprietary Unices have fixed this historical flaw in the >>> traditional hierarchy by moving /usr/local/etc to another location >>> and them symlinking it back to where seasoned administrators expect >>> it to be, thus honoring POLA. The three open source, old school >>> BSDs (Free, Net, Open) have not done this to date, but it's >>> something that should be considered in the long run. It would >>> certainly make the creation of embedded systems easier, as well as >>> enhancing security in multi-user systems! >> >> You mean users' home directories are under /usr/home rather than /home? >> >> I believe /home is more traditional, and decidedly my preference: >> good to put on a separate partition so it won't be touched by a >> system upgrade. > > Afaik /home has always been a symlink to /usr/home (unless you created a > separate /home-partition within FreeBSD). So it is up to the admin what > he chooses to do. Interesting, there is no mention of /home in hier(7). I guess it can be anything (without symlink) unlike, say, /compat stuff which needs at least symlink for `emulation tree' to work.