[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: read only root partition


yes, I know that root can remount the partition in read/write. However, with 
LIDS, it's possible to limit access to commands, even for root.  So the root 
partition would be read-only and would stay like that. Access to Lilo would 
also be limited.
/var could be noexec so any filed copied to it wouldn't be executable.

Another reason for the read-only is the fact that when the computer is not 
properly rebooted, the partitions don't have to go through e2fsck.


On Fri, 29 Sep 2000, Ethan Benson wrote:

> > On Fri, Sep 29, 2000 at 12:25:02PM +0200, Raphael Bauduin wrote:
> > Hi!
> >
> > I want to install debian on a computer, where only the /var partition
> > would be writeable. Has anyone of you done it? Any advice?
> >
> > The possible problems:
> [problems snipped]
> why exactly do you want to do this?  its not really a trivial thing to
> do as your finding out.  if its security your not really getting much
> since root can just mount -o remount,rw / anyway.
> perhaps a better option is a ramdisk /

Content-Type: application/pgp-signature; name="unnamed"
Content-Transfer-Encoding: 7bit

             |  -°)                        (°-  |
             |  /\\     Linux for ever     //\  |
             | _\_v                        v_/_ |

   If windows is the answer, it must have been a stupid question.

Reply to: