[lug] Personal 'layer'
Bear Giles
bgiles at coyotesong.com
Sun Aug 3 17:41:24 MDT 2008
Sebastian Sobolewski (Spsobole) wrote:
> That's a cleaver idea. What I have done in the past is partition my Linux
> boxes as:
> /
> /home
> /opt -> /home/opt
>
A problem with that is that /home should be mounted 'nosuid' and ideally
'noexec'. (The latter might not be practical for developers, but they
should still have nosuid flags set.)
/opt, in contrast, will definitely need 'exec'. It might need 'suid' as
well, depending on the application.
Both should be 'nodev', of course.
More information about the LUG
mailing list