[COLUG] Partition Size
Duane
duane at e164.org
Mon Dec 10 09:12:38 EST 2007
Chris Clonch wrote:
> For a desktop system, probably not. But I think it is still a good idea for
> servers. Not really for space allocation but mounting filesystems read-only,
> using multiple filesystems. etc.
Doesn't it get a bit messy doing the whole parts of the file system as
read only? I thought things were tending to be shifting more toward the
file ACL level (selinux etc) to achieve this instead?
A friend showed me how pointless things like noexec, nosuid was a long
time ago, since most system breaches these days don't care for root as
long as packets can still go out and things like perl exist and can be
executed from somewhere on the file system.
As for multiple file systems, this is where commodity single use boxes
(or Xen) comes into play :)
--
Best regards,
Duane
http://www.freeauth.org - Enterprise Two Factor Authentication
http://www.nodedb.com - Think globally, network locally
http://www.sydneywireless.com - Telecommunications Freedom
http://e164.org - Because e164.arpa is a tax on VoIP
"In the long run the pessimist may be proved right,
but the optimist has a better time on the trip."
More information about the colug432
mailing list