| 1 |
On Wed, 09 May 2007 18:31:07 -0600, darren kirby wrote: |
| 2 |
|
| 3 |
> quoth the Neil Bothwick: |
| 4 |
> > On Wed, 09 May 2007 15:49:45 -0600, darren kirby wrote: |
| 5 |
> > > I have heard you can use a separate /usr to enhance security by |
| 6 |
> > > mounting it readonly under normal circumstances. This way, bad guys |
| 7 |
> > > can't mess with your binaries in /usr/bin and /usr/sbin, |
| 8 |
> > |
| 9 |
> > Instead of only being able to get at the really important stuff |
| 10 |
> > in /bin and /sbin? |
| 11 |
> |
| 12 |
> Well, very nice how you trimmed the part of my original email that |
| 13 |
> speaks to your question and makes the same point as you, but thanks for |
| 14 |
> making me look stupid anyway... |
| 15 |
|
| 16 |
The part I trimmed was "though it seems to me if they have access |
| 17 |
to mess with your /usr they can mess with anything anyway so..." which I |
| 18 |
guess could mean what you say you meant rather than how I read it. Sorry |
| 19 |
if you think I twisted your post, that wasn't my intention. |
| 20 |
|
| 21 |
|
| 22 |
-- |
| 23 |
Neil Bothwick |
| 24 |
|
| 25 |
Remember that the Titanic was built by experts, and the Ark by a newbie |
Archives