-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, Dec 07, 2005 at 10:55:42AM -0800, Bryan J. Smith wrote: > Rodrigo Barbosa <rodrigob at suespammers.org> wrote: > > Having /etc readonly is kind of tricky. > > Are you sure that is a good idea ? > > That was my exact thought as well. You can separate out > everything except /etc, which really needs to be on /. > > Ideally any programs/services should not be automatically > writing to /etc (but /var or /srv instead), but that's hardly > the reality. Maybe I'm just used to the old SysV systems, but every time I see /etc/mtab as a link to something on /var I want to scream. We also have to remember that historicaly the homedir for root was /. Even these days we still see it as /root. I'm sure you remember all the reasons for it not being on /home, so I won't get into that. Anyway, I agree that ideally the changeable areas should be restricted, or at least grouped, to simplify management. It is, of course, theoreticaly possible to have / mounted ro. Will take a good bunch of symlinks, tho, so I would not recomend it to anyone. []s - -- Rodrigo Barbosa <rodrigob at suespammers.org> "Quid quid Latine dictum sit, altum viditur" "Be excellent to each other ..." - Bill & Ted (Wyld Stallyns) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFDlzy/pdyWzQ5b5ckRAtMFAKCE0shkyNV7iHCUJkr3mMg0s+AMWACdGgsV nizFihXi+A0MrJViH4IxJnY= =Xakr -----END PGP SIGNATURE-----