On Wed, 09 May 2007 18:31:07 -0600, darren kirby wrote: > quoth the Neil Bothwick: > > On Wed, 09 May 2007 15:49:45 -0600, darren kirby wrote: > > > I have heard you can use a separate /usr to enhance security by > > > mounting it readonly under normal circumstances. This way, bad guys > > > can't mess with your binaries in /usr/bin and /usr/sbin, > > > > Instead of only being able to get at the really important stuff > > in /bin and /sbin? > > Well, very nice how you trimmed the part of my original email that > speaks to your question and makes the same point as you, but thanks for > making me look stupid anyway...
The part I trimmed was "though it seems to me if they have access to mess with your /usr they can mess with anything anyway so..." which I guess could mean what you say you meant rather than how I read it. Sorry if you think I twisted your post, that wasn't my intention. -- Neil Bothwick Remember that the Titanic was built by experts, and the Ark by a newbie
signature.asc
Description: PGP signature
