25 May
2008
25 May
'08
12:18 p.m.
On Sat, May 24, 2008 at 8:29 PM, Fred Noz Fred@noz.net wrote:
In addition to easy maintenance, readonly-root adds a layer of security. The security is broken if someone gains access to the root user, but then many security protections are lost if someone gains root.
However, this should *never* be used alone for security concerns. A compromiser can easily run that simple mount command to remount read-write after root access. But sometimes before gaining root access, some system spesific files are over-written to gain root access with the help of exploits.. This helps keeping from them.