Date: Sat, 17 Feb 2001 11:09:31 -0500 From: Andrew Arensburger <arensb@cfar.umd.edu> To: Cliff Sarginson <cliff@raggedclown.net> Cc: Vlad Skvortsov <vss@ulstu.ru>, freebsd-questions@FreeBSD.ORG Subject: Re: read-only / Message-ID: <200102171609.LAA04004@glitnir.cfar.umd.edu> In-Reply-To: Your message of "Fri, 16 Feb 2001 14:09:25 GMT." <E14TlZd-0008MR-00@post.mail.nl.demon.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 16 Feb 2001 14:09:25 GMT, Cliff Sarginson wrote: > > That is shell access server. The configuration has to be secure because > > we have not much time to watch this box. Everything what's possible is set > > to r/o; r/w partitions are quotas enabled, noexec and nodev flags are on. > > The only filesystem left "unsecure" is /. > > Since I have never tried it I must say I am slightly suprised > you can even logon at all if the /dev permissions cannot be > changed. Alternately, would it be possible to put /dev on a separate read-write partition? Things might get a bit interesting at boot time, but this would allow you to have a read-write /dev on a read-only /. -- Andrew Arensburger, Systems guy Center for Automation Research arensb@cfar.umd.edu University of Maryland Alex Haley was adopted! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200102171609.LAA04004>