Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Mon 01 Sep 2014, 03:41
All times are UTC - 4
 Forum index » House Training » Users ( For the regulars )
usr writable - security issue?
Moderators: Flash, Ian, JohnMurga
Post new topic   Reply to topic View previous topic :: View next topic
Page 1 of 1 [5 Posts]  
Author Message
dvw86


Joined: 04 May 2005
Posts: 636
Location: Washington State

PostPosted: Mon 16 May 2005, 22:40    Post subject:  usr writable - security issue?  

Just a quick question.
Now that usr is writable, does that create any new security issues?
Back to top
View user's profile Send private message 
BarryK
Puppy Master


Joined: 09 May 2005
Posts: 7047
Location: Perth, Western Australia

PostPosted: Tue 17 May 2005, 05:35    Post subject:  

yes, a read-only /usr was a definite asset from that point of view.

Of course, anyone can build their own live-CD from Unleashed and disable the writable /usr, but then they can't install anything into /usr.

I was thinking about security when I was designing the version upgrade script, that throws everything out of /usr that doesn't seem to belong... but that's not really a solution to the potential problem.
Another possibility is a checksum of all the files that are officially allowed to be there.
Back to top
View user's profile Send private message Visit poster's website 
dvw86


Joined: 04 May 2005
Posts: 636
Location: Washington State

PostPosted: Tue 17 May 2005, 13:21    Post subject:  

So is the only reason that /usr is writable, is to make for easy/smooth upgrades? If that is the case, I kind of like the idea of checksums. I don't see any reasons that the end user would need to write to /usr.
Back to top
View user's profile Send private message 
Pizzasgood


Joined: 04 May 2005
Posts: 6270
Location: Knoxville, TN, USA

PostPosted: Tue 17 May 2005, 16:53    Post subject:  

That's like if Gates said, "I don't see any reason why they would need to edit the "Program Files" directory. Yeah, I could still install stuff somewhere else, but I'd rather use the /usr directory. It keeps things simpler. Besides, you're techincally not editing /usr, you're editing /root/.usr. Anyways, back to edititing. In addition to adding stuff, I like to be able to change what's already there. One of the reasons I like Linux is that I can customise it so much. I want to be able to go in and change the scripts in /usr if for some reason I needed to.

Basically, I don't like people telling me that I don't need to do something. It tends to make me mad. They don't know what I need. They're not me. If you ask me, they don't need to be telling me what I need. I know my needs better than anyone else.

Sorry if I got carried away, but I just get ticked off when people try to make decisions for me. No offense or anything. And that last part was directed towards the whole world, not you. I'm good now.

_________________
Between depriving a man of one hour from his life and depriving him of his life there exists only a difference of degree. --Muad'Dib

Back to top
View user's profile Send private message Visit poster's website 
BarryK
Puppy Master


Joined: 09 May 2005
Posts: 7047
Location: Perth, Western Australia

PostPosted: Tue 17 May 2005, 21:28    Post subject:  

dvw86 wrote:
So is the only reason that /usr is writable, is to make for easy/smooth upgrades? If that is the case, I kind of like the idea of checksums. I don't see any reasons that the end user would need to write to /usr.


No, it doesn't affect upgrades, but if /usr not writable you can't download packages with PupGet.
Back to top
View user's profile Send private message Visit poster's website 
Display posts from previous:   Sort by:   
Page 1 of 1 [5 Posts]  
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » House Training » Users ( For the regulars )
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0457s ][ Queries: 12 (0.0034s) ][ GZIP on ]