-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [EMAIL PROTECTED] wrote: > 2007/4/4, Wei Chen <[EMAIL PROTECTED]>: >> I found that "chroot" can only be run by root. Why cannot it be run as a >> normal user? > > For security reasons...just imagine a user copy his own binaries and > conf files under a directory, then chroot to this dir.... he can > bypass the initial security configuration, delete the stuff he wants > and so on. >
But he can also delete them without chroot if he has the permission, right? And after chroot, he can only delete things that are in the jail. >> I do not put /home on a separate partition because I never know how much >> space I need for personal files and how much space I need for system >> files. If I have another physical disk, I'd rather put backups on it. > > Let's use several LVM2 or EVMS partitions, so that you may optimize > your disk usage with very few restrictions. > > Gal' > One day, one of my friends messed things up on her system that was on LVM. After re-installing the system, she had trouble activating the LVM partitions. (The problem was solved at last.) I learn from that and do not use this technique. I also heard from some others that it was a complicated technique... - -- Cheers, Wei Chen http://www.acplex.com/people/wchen/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGE3IKCIqXQV6BF28RAhmhAKDNho4ZdTMuZzaZlrMPXuha89StrQCfRyYP vWsTwicqnczcYdTI9t2/jTY= =trZX -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
