Re: Good fdisk Practices

To: debian-user@lists.debian.org
Subject: Re: Good fdisk Practices
From: Jamin Davis <jweb@ghost.merseine.nu>
Date: Sun, 26 Aug 2007 18:33:19 +0100
Message-id: <[🔎] u3q8q4-g2e.ln1@ID-307283.user.individual.net>
Reply-to: jamin@ghost.merseine.nu
References: <[🔎] 200708241310.l7ODAfql057635@dc.cis.okstate.edu> <[🔎] 46CEE9DA.5020203@cox.net> <[🔎] D27E8438-B48B-4E71-A32D-9AC792A0B8D7@u.washington.edu> <[🔎] 46CF0F44.9010605@cox.net> <[🔎] slrnfd0pc5.b47.keeling@heretic.nucleus.com> <[🔎] 35F6F5D6-1184-457A-9A69-1FCC440B4B5E@u.washington.edu>

David Brodbeck <brodbd@u.washington.edu> wrote:

>> There may be good reason for it still in terms of security.  /boot
>> doesn't need to be mounted on a running system.  I'm not sure if that
>> adds a lot of security though.
> I'm thinking no.  To alter any of the kernel files you'd need root
> privileges, and if you have that, you can do 'mount /boot'.

I read an installation doc a long time ago that suggested mounting boot
read-only for security - have done so ever since. It's not every day I need
to update the kernel.

-- 
Jamin @ Home: Chester UK -<jamin@ghost.merseine.nu>

Reply to:

References:
- Good fdisk Practices
  - From: Martin McCormick <martin@dc.cis.okstate.edu>
- Re: Good fdisk Practices
  - From: Ron Johnson <ron.l.johnson@cox.net>
- Re: Good fdisk Practices
  - From: David Brodbeck <brodbd@u.washington.edu>
- Re: Good fdisk Practices
  - From: Ron Johnson <ron.l.johnson@cox.net>
- Re: Good fdisk Practices
  - From: "s. keeling" <keeling@nucleus.com>
- Re: Good fdisk Practices
  - From: David Brodbeck <brodbd@u.washington.edu>

Prev by Date: Re: graphics driver issues
Next by Date: Re: Good fdisk Practices
Previous by thread: Re: Good fdisk Practices
Next by thread: Re: Good fdisk Practices
Index(es):
- Date
- Thread