Re: Changing home for root

From: Laurenz Albe <invite@xxxxxxxxxxxxxxx>
Date: 30 Jan 2006 08:38:25 GMT

Wil Cooley <wcooley@xxxxxxxxxxx> wrote:
>> Basic recommendation for new AIX systems:
>> 1) Create for the user ROOT its own filessytem ( /root ) and change the
>> home directory to ( /root) . Otherwise you are going to trash your
>> system on the long run if you not keep an eye on / ( Which is the home
>> directory for the user root - Do not forget to move the .ssh and
>> .rhosts to the new home diretcory as well )
> ...
>
> Is this generally considered a safe thing to do? I'd really love to do
> this--I've spent most of my sys admin-life on Linux and really hate the
> clutter and feel unsafe having root's files "listable" by users.
>
> Other than, perhaps, setup scripts that assume the location of /.rhosts,
> what are the other considerations or pitfalls?

I believe that it is a good idea to change root's home to /root (I have
frequently done so on AIX system I have administered), but I advise
against creating a file system /root.

The reason is that when you run in maintenance or service mode, /root
may not be mounted, and whatever config files you have there will not be
available.

I do not accept the point that having /root in the / file system presents
a danger of inadvertedly filling up the root file system:
That is, unless you run programs like netscape while you are root.
This is something you should not do under any circumstances anyway.
Use root only for commands that require root, everything else is bad.

If you think you can reduce the danger in carelessly using the root
account by having /root on a seperate file system, you are wrong.

Yours,
Laurenz Albe
.

Follow-Ups:
- Re: Changing home for root
  - From: Hajo Ehlers

References:
- root drive size
  - From: mousemo
- Re: root drive size
  - From: Hajo Ehlers
- Changing home for root (Was: Re: root drive size)
  - From: Wil Cooley

Prev by Date: Re: How to share a directory on AIX with windows?
Next by Date: Re: Changing home for root
Previous by thread: Re: Changing home for root (Was: Re: root drive size)
Next by thread: Re: Changing home for root
Index(es):
- Date
- Thread

Relevant Pages

Re: what to do about "cannot dump to dumpdev hd(1/41): space for
... smoke out anything that would point to root being there. ... whole disk division and maybe boot but nothing else. ... I've see that before when a client used Microlite Backup ... alter the file system and log its results to /tmp/logfsck. ...
(comp.unix.sco.misc)
Isolated Base Installation?
... which will allow a FUSE File System to read through itself. ... FUSE file systems can be used to make snapshots. ... IBI is a method for preserving the install time ... The basic premise for IBI is that when the system is installed, the root ...
(Ubuntu)
Re: How to set up NFS client for Kerberized access in Solaris
... authenticate the root user. ... keytab file instead. ... Setting Up Root Authentication to Mount NFS File Systems ... If users want to access a non-Kerberized NFS file system, ...
(comp.unix.solaris)
Re: Saving Objectstore to a WinCE OS device
... ANY filesystem can be used. ... It should indicate that this particular registry key is deprecated, ... the registry and mount it as the root and you'll be 80% of the way ... I thought when you mentioned File system that you was refering to ...
(microsoft.public.windowsce.embedded)
Summary: df -k : discrepancy in the % displayed
... The standard file system reserves about 10% of the kbytes for efficiency; ... is unavailable to anyone except root. ... If you created your filesystem with default options, ... This 5% or so reservation is probably not worth bothering with on a 1-2GB ...
(SunManagers)