Re: [OT] fhs and multiple partitions (was: Installing Debian using ...)

To: debian-powerpc@lists.debian.org
Subject: Re: [OT] fhs and multiple partitions (was: Installing Debian using ...)
From: Kiko Piris <debian@pirispons.net>
Date: Mon, 23 Feb 2004 16:25:16 +0100
Message-id: <[🔎] 20040223152516.GA1625@mortadelo.pirispons.net>
Mail-followup-to: debian-powerpc@lists.debian.org
In-reply-to: <[🔎] 1077540761.8120.147.camel@cube>
References: <[🔎] 246D7B7C-64EE-11D8-AFB0-00039392CAFA@smolny.plus.com> <[🔎] 4039A183.1030705@dsdk12.net> <[🔎] 20040223070551.GB27336@infidel.spots.ab.ca> <[🔎] 20040223074046.GA28069@infidel.spots.ab.ca> <[🔎] 20040223114653.GA10459@fpirisp.portsdebalears.com> <[🔎] 1077540761.8120.147.camel@cube>

On 23/02/2004 at 07:52, Albert Cahalan wrote:

> If stability were an issue, we'd need to fix that
> instead of using a gross work-around.

Yes, you're right.

> Nope. This is Linux, which kicks ass. On your
> single-partition Linux 2.6 system, do this:
> 
> mount --bind /home /home
> mount --bind -o remount,nosuid /home /home

Oh!, nice thing. I discovered mount -bind some days ago and I didn't
realize this utility. Very nice!.

However, some of the servers I admin run 2.4 (and I do not plan to move
them to 2.6, so...).

> > What is a *very big* security gain is to mount *all* partitions *except*
> > /usr nosuid.
> 
> **AHEM**
> 
> mount --bind

You're right (with 2.6) :-)

> Problem solved, without the disk management issues.

Yes, but: What if some dumb|malicious user|program fills /home ?
Or a daemon goes crazy and fills /var/log ?

IMHO, having separate partitions for system and data is mandatory in any
decently administered OS.

Anyway, I feel more comfortable having my system split in half a dozen
partitons than a single huge one. Given that a 40 Gb hard disk lets me
partition them generously.

That "feeling" is due to having had some "freights" when I used reiserfs
(losing /home due to fs corruption is a bad thing, losing the entire
system is worse).

Anyway; I generally agree with you, just wanted to comment some points.

Thanks.

-- 
Kiko

Reply to:

Follow-Ups:
- Re: [OT] fhs and multiple partitions (was: Installing Debian using ...)
  - From: Albert Cahalan <albert@users.sf.net>

References:
- Installing Debian using debian-sarge-netinst.iso (powerpc)
  - From: sebyte <sebyte@smolny.plus.com>
- Re: Installing Debian using debian-sarge-netinst.iso (powerpc)
  - From: Derrik Pates <dpates@dsdk12.net>
- Re: Installing Debian using debian-sarge-netinst.iso (powerpc)
  - From: "s. keeling" <keeling@spots.ab.ca>
- Re: Installing Debian using debian-sarge-netinst.iso (powerpc)
  - From: "s. keeling" <keeling@spots.ab.ca>
- [OT] fhs and multiple partitions (was: Installing Debian using ...)
  - From: Kiko Piris <debian@pirispons.net>
- Re: [OT] fhs and multiple partitions (was: Installing Debian using ...)
  - From: Albert Cahalan <albert@users.sf.net>

Prev by Date: Re: [OT] fhs and multiple partitions (was: Installing Debian using ...)
Next by Date: Re: Installing Debian using debian-sarge-netinst.iso (powerpc)
Previous by thread: Re: [OT] fhs and multiple partitions (was: Installing Debian using ...)
Next by thread: Re: [OT] fhs and multiple partitions (was: Installing Debian using ...)
Index(es):
- Date
- Thread