From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.62) (envelope-from ) id 1HlwfG-0004Wx-Mo for garchives@archives.gentoo.org; Thu, 10 May 2007 00:37:51 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.14.0/8.14.0) with SMTP id l4A0aZN6015488; Thu, 10 May 2007 00:36:35 GMT Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by robin.gentoo.org (8.14.0/8.14.0) with ESMTP id l4A0W9TO010635 for ; Thu, 10 May 2007 00:32:10 GMT Received: from localhost (localhost [127.0.0.1]) by smtp.gentoo.org (Postfix) with ESMTP id 20C0864D0A for ; Thu, 10 May 2007 00:32:09 +0000 (UTC) X-Virus-Scanned: amavisd-new at gentoo.org X-Spam-Score: 0.054 X-Spam-Level: X-Spam-Status: No, score=0.054 required=5.5 tests=[AWL=0.054] Received: from smtp.gentoo.org ([127.0.0.1]) by localhost (smtp.gentoo.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uume3MAjcICM for ; Thu, 10 May 2007 00:32:07 +0000 (UTC) Received: from pd2mo3so.prod.shaw.ca (shawidc-mo1.cg.shawcable.net [24.71.223.10]) by smtp.gentoo.org (Postfix) with ESMTP id A499264CEE for ; Thu, 10 May 2007 00:32:07 +0000 (UTC) Received: from pd4mr3so.prod.shaw.ca (pd4mr3so-qfe3.prod.shaw.ca [10.0.141.214]) by l-daemon (Sun ONE Messaging Server 6.0 HotFix 1.01 (built Mar 15 2004)) with ESMTP id <0JHS00E24URTDAE6@l-daemon> for gentoo-user@gentoo.org; Wed, 09 May 2007 18:31:05 -0600 (MDT) Received: from pn2ml5so.prod.shaw.ca ([10.0.121.149]) by pd4mr3so.prod.shaw.ca (Sun Java System Messaging Server 6.2-7.05 (built Sep 5 2006)) with ESMTP id <0JHS0005OURQMK30@pd4mr3so.prod.shaw.ca> for gentoo-user@gentoo.org; Wed, 09 May 2007 18:31:03 -0600 (MDT) Received: from virgo.badcomputer.org ([68.148.98.184]) by l-daemon (Sun ONE Messaging Server 6.0 HotFix 1.01 (built Mar 15 2004)) with ESMTP id <0JHS005VYURQ9WO3@l-daemon> for gentoo-user@gentoo.org; Wed, 09 May 2007 18:31:02 -0600 (MDT) Date: Wed, 09 May 2007 18:31:07 -0600 From: darren kirby Subject: Re: [gentoo-user] Separate /usr [was: Clock is way off] In-reply-to: <20070510000608.319c2326@hactar.digimed.co.uk> To: gentoo-user@lists.gentoo.org Message-id: <200705091831.08070.bulliver@badcomputer.org> Organization: Badcomputer Org. Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-version: 1.0 Content-type: text/plain; charset=iso-8859-6 Content-transfer-encoding: 7bit Content-disposition: inline References: <49bf44f10705081656s776f28f5kbe497a5326107c2f@mail.gmail.com> <200705091549.45764.bulliver@badcomputer.org> <20070510000608.319c2326@hactar.digimed.co.uk> User-Agent: KMail/1.9.6 X-Archives-Salt: f8847507-689c-40ca-804e-9499ca9e49f0 X-Archives-Hash: 8320412783031cfd56f178907462e943 quoth the Neil Bothwick: > On Wed, 09 May 2007 15:49:45 -0600, darren kirby wrote: > > I have heard you can use a separate /usr to enhance security by > > mounting it readonly under normal circumstances. This way, bad guys > > can't mess with your binaries in /usr/bin and /usr/sbin, > > Instead of only being able to get at the really important stuff in /bin > and /sbin? Well, very nice how you trimmed the part of my original email that speaks to your question and makes the same point as you, but thanks for making me look stupid anyway... Yeah, I know, I make myself look stupid, right ;) -d -- darren kirby :: Part of the problem since 1976 :: http://badcomputer.org "...the number of UNIX installations has grown to 10, with more expected..." - Dennis Ritchie and Ken Thompson, June 1972 -- gentoo-user@gentoo.org mailing list