On Fri, Jan 04, 2008 at 05:50:03PM -0500, Bob Doolittle wrote: > Gary Mills wrote: > > >The problem I always encounter is that /tmp is mounted with the > >`nosuid' by default. This is specified in /etc/vfstab as a security > >measure. It prevents audio devices in /tmp from working. I have to > >set up a special install configuration for Sun Ray servers to omit > >this option. > > Do you mean that your site adds "nosuid" to the /tmp mount for security > reasons? > This is not the default, but it might well cause all sorts of mayhem to > SRSS.
It's our default. The policy is that all user-writable filesystems should be mounted `nosuid'. This prevents certain classes of security breaches. Home directories plus /var and /tmp are the usual ones. Yes, I'd be much happier if Sun Ray Server didn't create devices or use mount points in /tmp. -- -Gary Mills- -Unix Support- -U of M Academic Computing and Networking- _______________________________________________ SunRay-Users mailing list [email protected] http://www.filibeto.org/mailman/listinfo/sunray-users
