[CentOS] read only root file system
Linux
linuxlist at gmail.com
Sun May 25 10:18:27 UTC 2008
On Sat, May 24, 2008 at 8:29 PM, Fred Noz <Fred at noz.net> wrote:
> In addition to easy maintenance, readonly-root adds a layer of security.
> The security is broken if someone gains access to the root user, but
> then many security protections are lost if someone gains root.
However, this should *never* be used alone for security concerns. A
compromiser can easily run that simple mount command to remount
read-write after root access. But sometimes before gaining root
access, some system spesific files are over-written to gain root
access with the help of exploits.. This helps keeping from them.
More information about the CentOS
mailing list