Date: Mon, 28 Sep 1998 04:42:02 -0400 From: "Allen Smith" <easmith@beatrice.rutgers.edu> To: Anton Voronin <anton@urc.ac.ru>, freebsd-security@FreeBSD.ORG Subject: Re: Booting from NT ? Message-ID: <9809280442.ZM14011@beatrice.rutgers.edu> In-Reply-To: Anton Voronin <anton@urc.ac.ru> "Re: Booting from NT ?" (Sep 28, 4:39am) References: <199809262242.PAA24523@usr04.primenet.com> <9809280220.ZM6404@beatrice.rutgers.edu> <360F4A82.2A2E8157@urc.ac.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sep 28, 4:39am, Anton Voronin (possibly) wrote: > Allen Smith wrote: > > > Question... what does happen if one has a R/O root filesystem, > > including /dev, without DEVFS? I'm constructing a firewall computer > > with a (switchable - a nice facility of some Seagate drives) hard > > drive for root, a second writeable drive for /var and swap, and a /tmp > > MFS. What problems am I likely to run into with /dev? I'd really > > prefer not to have it as a symlink to /var/dev or some such... > > It needs to write /dev/console but it does this before mounting according to > fstab. If you protect your hard drive it probably won't work. Try to just > mount it with -ro option. Sorry, that would defeat the purpose - if somebody gets root on the machine, they can override that. If it's _physically_ read-only, they can't. If need be, I'll do something like moving /dev/console to /var/dev/console and putting in a symlink - thanks for the information. -Allen -- Allen Smith easmith@beatrice.rutgers.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9809280442.ZM14011>