source: BOOK/chroot/common/changingowner.xml@ cf4bffa

clfs-1.2 clfs-2.1 clfs-3.0.0-systemd clfs-3.0.0-sysvinit systemd sysvinit
Last change on this file since cf4bffa was fb40919, checked in by Chris Staub <chris@…>, 19 years ago

Changed many 'LFS' references to 'CLFS'

  • Property mode set to 100644
File size: 2.2 KB
RevLine 
[3f8be484]1<?xml version="1.0" encoding="ISO-8859-1"?>
2<!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.4//EN"
3 "http://www.oasis-open.org/docbook/xml/4.4/docbookx.dtd" [
4 <!ENTITY % general-entities SYSTEM "../../general.ent">
5 %general-entities;
6]>
7
8<sect1 id="ch-chroot-changingowner">
9 <?dbhtml filename="changingowner.html"?>
10
11 <title>Changing Ownership</title>
12
[6bfe833]13 <para os="a">Currently, the <filename class="directory">/tools</filename>
[fa6e750]14 and <filename class="directory">/cross-tools</filename> directories
15 are owned by the user <emphasis>lfs</emphasis>, a user that
16 exists only on the host system. Although the <filename
17 class="directory">/tools</filename> and <filename
18 class="directory">/cross-tools</filename> directories can be deleted
[fb40919]19 once the CLFS system has been finished, they can be retained to build
20 additional CLFS systems. If the <filename class="directory">/tools</filename>
[fa6e750]21 and <filename class="directory">/cross-tools</filename> directories are
22 kept as is, the files are owned by a user ID without a corresponding
23 account. This is dangerous because a user account created later could
24 get this same user ID and would own the <filename
[9c127a8]25 class="directory">/tools</filename> directory and all the files therein,
[fa6e750]26 thus exposing these files to possible malicious manipulation.</para>
[3f8be484]27
[6bfe833]28 <para os="b">To avoid this issue, add the <systemitem
[fb40919]29 class="username">lfs</systemitem> user to the new CLFS system later when
[6bfe833]30 creating the <filename>/etc/passwd</filename> file, taking care to assign
31 it the same user and group IDs as on the host system. Alternatively,
32 assign the contents of the <filename class="directory">/tools</filename>
33 and <filename class="directory">/cross-tools</filename> directories to
34 user <systemitem class="username">root</systemitem> by running the
35 following commands:</para>
[3f8be484]36
[6bfe833]37<screen os="c"><userinput>chown -Rv 0:0 /tools
[94e6142]38chown -Rv 0:0 /cross-tools</userinput></screen>
[3f8be484]39
[6bfe833]40 <para os="d">The commands use <parameter>0:0</parameter> instead of
[fa6e750]41 <parameter>root:root</parameter>, because <command>chown</command>
[9b65b70]42 is unable to resolve the name <quote>root</quote> until the
43 <filename>passwd</filename> file has been created.</para>
[3f8be484]44
45</sect1>
Note: See TracBrowser for help on using the repository browser.