On Wednesday 09 November 2005 23:05, Gianni wrote: > Hello! > > I'm using Fedora 2 filesystem and all the directories uses a unique root > partition ( / ) > The problem is that in /tmp partition of my virtual server, I'm always find > some kind of script kiddie. > And I can't protect this directory (disallow execution of binaries, ok > disallow setuid programs, How can anybody have a program "setuid root" there unless he has root access first? > etc) because /tmp is not a separated partition. > Is possible make /tmp a separated partition, so, I can protect it editing > /etc/fstab in my virtual server ? Yep - you should put an entry in fstab and reboot (I wouldn't remount it with the server live - it would hide the previous content).
I would also suggest a tmpfs mount for /tmp, but use the force, Luke! Aka pass in the options a good size= (see man mount). > My virtual server was build with the following commands: > > dd if=/dev/zero of=Fedora2 bs=1 count=0 seek=7G > e2fsck -f Fedora2 > resize2fs -p Fedora2 > e2fsck -f Fedora2 > mount -o loop -t ext2 /home/fedora2/Fedora2 /mnt/m1 > umount /mnt/m1 > e2fsck -f Fedora2 > dd if=/dev/zero of=Swap bs=1k count=1 seek=1G > mkswap Swap > linux ubd0=/home/fedora2/Fedora2 ubd1=Swap umid=fedora2 eth0=tuntap,,, > 209.xxx.xxx.xxx mem=160M con=null con0=fd:0,fd:1 -- Inform me of my mistakes, so I can keep imitating Homer Simpson's "Doh!". Paolo Giarrusso, aka Blaisorblade (Skype ID "PaoloGiarrusso", ICQ 215621894) http://www.user-mode-linux.org/~blaisorblade ___________________________________ Yahoo! Messenger: chiamate gratuite in tutto il mondo http://it.messenger.yahoo.com ------------------------------------------------------- SF.Net email is sponsored by: Tame your development challenges with Apache's Geronimo App Server. Download it for free - -and be entered to win a 42" plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php _______________________________________________ User-mode-linux-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/user-mode-linux-user
