From owner-freebsd-questions Mon Jan 14 3: 2:12 2002 Delivered-To: freebsd-questions@freebsd.org Received: from dire.bris.ac.uk (dire.bris.ac.uk [137.222.10.60]) by hub.freebsd.org (Postfix) with ESMTP id F270637B404 for ; Mon, 14 Jan 2002 03:02:06 -0800 (PST) Received: from mail.ilrt.bris.ac.uk by dire.bris.ac.uk with SMTP-PRIV with ESMTP; Mon, 14 Jan 2002 11:01:50 +0000 Received: from cmjg (helo=localhost) by mail.ilrt.bris.ac.uk with local-esmtp (Exim 3.16 #1) id 16Q4pS-0006Jz-00; Mon, 14 Jan 2002 10:59:02 +0000 Date: Mon, 14 Jan 2002 10:59:02 +0000 (GMT) From: Jan Grant X-X-Sender: To: Mike Meyer Cc: David Syphers , questions Subject: Re: can't mount / properly, fstab woes In-Reply-To: <15426.32937.509856.537287@guru.mired.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Mon, 14 Jan 2002, Mike Meyer wrote: > David Syphers types: > > On Saturday 12 January 2002 07:40 pm, Chris Fedde wrote: > > > On Sat, 12 Jan 2002 19:00:02 -0600 David Syphers wrote: > > I can't. That's what I meant when I said that "it won't let me mount / > > read-write." I tried > > > > # mount -u -w / > > # mount -u -w /dev/ad0s1a > > # mount -u -w -f /dev/ad0s1a > > > > and none of them work. They all give the error "fstab /etc/fstab :3: > > inappropriate file type or format". Why is it looking at fstab anyway, if > > I've specified the device name? > > Because you didn't specify the mount point? I'm not able to test this, > but I'd suggest: > > 1) shutdown -r > 2) reboot to single user mode > 3) mount -u -o ro / /dev/ad0s1a Switch the last two parameters around. ... > > > Read only / disk is safe if you are careful and understand what you > > > are doing. Remember that security is inversely proportional to > > > convenience. > > What did I do that was wrong, then? All I changed was / to read-only. This, > > and this alone, caused my web server to stop functioning. > > I'd say you weren't careful enough. Your web server probably needed > write access to something on /, which it can no longer get. Check the > web server log files when you have the chance to see what it > complained about. ...and unless you're using some "enterprise-level" authentication mechanism, don't expect to be able to change any of your passwords. Most of the benefits of a read-only / filesystem can be garnered by careful use of a positive securelevel, with appropriate flags on the files you want to preserve. -- jan grant, ILRT, University of Bristol. http://www.ilrt.bris.ac.uk/ Tel +44(0)117 9287088 Fax +44 (0)117 9287112 RFC822 jan.grant@bris.ac.uk On modesty: whoever said "it's hard being perfect" obviously wasn't me. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message