Mailinglist Archive: opensuse-security (260 mails)

< Previous Next >
Re: [suse-security] root fs read-only
  • From: "Kurt Seifried" <listuser@xxxxxxxxxxxx>
  • Date: Tue, 18 Jul 2000 12:12:23 -0600
  • Message-id: <005b01bff0e3$b9127420$6900030a@xxxxxxxxxxxx>
> > Usually it's a better idea to use a r/w mounted ramdisk I think.
> > One problem is, that i.e. /etc/mtab needs to be written, usually.
>
> Yep, also the kernel needs write access to everything under /var,
otherwise
> you won't get log messages, lock files, etc.
>
> Furthermore, /tmp quite often requires write access.

Consider using LIDS. It's a lot easier to admin too.

http://www.securityportal.com/lskb/articles/kben10000021.html

Kurt Seifried
SecurityPortal, your focal point for security on the net
http://www.securityportal.com/



< Previous Next >
Follow Ups