Re: read-only file systemsFrom: James Puckett (firstname.lastname@example.org)
- Previous message: Kurt Seifried: "Re: read-only file systems"
- In reply to: Kurt Seifried: "Re: read-only file systems"
- Next in thread: Heather Flanagan: "RE: read-only file systems"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Message-ID: <email@example.com> Date: Mon, 10 Sep 2001 23:18:35 -0700 (PDT) From: James Puckett <firstname.lastname@example.org> Subject: Re: read-only file systems To: Kurt Seifried <email@example.com>, Heather Flanagan <HeathFla@reciprocal.com>, firstname.lastname@example.org
Nevermind on that last email, I misread it. No more
reading over email at 2am...
--- Kurt Seifried <email@example.com> wrote:
> > I know /usr can be comfortably turned in to a
> read-only file system for
> > particularly hardened systems - or at least I
> can't think of any reason
> > not. Can the same be done with / on Solaris 8?
> Sure. unless you need to change passwords. or have
> log files locally. or
> create tmp files or lock files. or maybe write to
> /etc/mtab (or whatever it
> is in solaris). I would reccomend something like
> argus pitbull rather then
> going through the insane hassle of trying to make /
> read only. plus once the
> attacker has root they can remount it.
> > -heather f.
> Kurt Seifried, firstname.lastname@example.org
> PGP Key ID: 0xAD56E574 Fingerprint:
> A15B BEE5 B391 B9AD B0EF AEB0 AD63 0B4E AD56 E574
Do You Yahoo!?
Get email alerts & NEW webcam video instant messaging with Yahoo! Messenger