- Timestamp:
- Feb 21, 2006, 2:05:54 AM (19 years ago)
- Branches:
- clfs-1.2, clfs-2.1, clfs-3.0.0-systemd, clfs-3.0.0-sysvinit, master, systemd, sysvinit
- Children:
- bf3d9d64
- Parents:
- ca9ed203
- Location:
- BOOK
- Files:
-
- 2 edited
Legend:
- Unmodified
- Added
- Removed
-
BOOK/boot/common/changingowner.xml
rca9ed203 rfa6e750 21 21 a user that exists only on the host system. For security reasons, the $LFS root directory and all of it subdirectories should be owned by <systemitem class="username">root</systemitem>. Change the ownership for $LFS and its subdirectories by running these commands:</para> 22 22 23 <screen><userinput>chown 0:0${LFS}24 chown -R 0:0$LFS/{bin,boot,dev,etc,home,lib,media,mnt,opt,proc,root,sbin,srv,sys,tmp,usr,var}</userinput></screen>23 <screen><userinput>chown root:root ${LFS} 24 chown -R root:root $LFS/{bin,boot,dev,etc,home,lib,media,mnt,opt,proc,root,sbin,srv,sys,tmp,usr,var}</userinput></screen> 25 25 26 26 <para os="c">The same issue also exists with <filename class="directory">/tools</filename> and <filename class="directory">/cross-tools</filename>. Although these directories can be deleted once the … … 39 39 assign the contents of the <filename class="directory">/tools</filename> 40 40 and <filename class="directory">/cross-tools</filename> directories to user <systemitem class="username">root</systemitem> by running 41 the following command :</para>41 the following commands:</para> 42 42 43 <screen><userinput>chown -R 0:0/tools44 chown -R 0:0/cross-tools</userinput></screen>43 <screen><userinput>chown -R root:root /tools 44 chown -R root:root /cross-tools</userinput></screen> 45 45 46 <para os="e">This book assumes you ran these <command>chown</command> commands.</para> 47 48 <!-- <para os="c">The command uses <parameter>0:0</parameter> instead of 49 <parameter>root:root</parameter>, because <command>chown</command> 50 is unable to resolve the name <quote>root</quote> until the password 51 file has been created. This book assumes you ran this 52 <command>chown</command> command.</para> --> 46 <para os="e">This book assumes you ran these <command>chown</command> commands.</para> 53 47 54 48 </sect1> -
BOOK/chroot/common/changingowner.xml
rca9ed203 rfa6e750 11 11 <title>Changing Ownership</title> 12 12 13 <xi:include xmlns:xi="http://www.w3.org/2003/XInclude" 14 href="../../boot/common/changingowner.xml" 15 xpointer="xpointer(//*[@os='a'])"/> 13 <para>Currently, the <filename class="directory">/tools</filename> 14 and <filename class="directory">/cross-tools</filename> directories 15 are owned by the user <emphasis>lfs</emphasis>, a user that 16 exists only on the host system. Although the <filename 17 class="directory">/tools</filename> and <filename 18 class="directory">/cross-tools</filename> directories can be deleted 19 once the LFS system has been finished, they can be retained to build 20 additional LFS systems. If the <filename class="directory">/tools</filename> 21 and <filename class="directory">/cross-tools</filename> directories are 22 kept as is, the files are owned by a user ID without a corresponding 23 account. This is dangerous because a user account created later could 24 get this same user ID and would own the <filename 25 lass="directory">/tools</filename> directory and all the files therein, 26 thus exposing these files to possible malicious manipulation.</para> 16 27 17 <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"18 href="../../boot/common/changingowner.xml"19 xpointer="xpointer(//*[@os='b'])"/>28 <xi:include xmlns:xi="http://www.w3.org/2003/XInclude" 29 href="../../boot/common/changingowner.xml" 30 xpointer="xpointer(//*[@os='d'])"/> 20 31 21 <screen><userinput>chown -R 0:0 /tools</userinput></screen> 32 <screen><userinput>chown -R 0:0 /tools 33 chown -R 0:0 /cross-tools</userinput></screen> 22 34 23 <xi:include xmlns:xi="http://www.w3.org/2003/XInclude" 24 href="../../boot/common/changingowner.xml" 25 xpointer="xpointer(//*[@os='c'])"/> 35 <para>The commands use <parameter>0:0</parameter> instead of 36 <parameter>root:root</parameter>, because <command>chown</command> 37 is unable to resolve the name <quote>root</quote> until the password 38 file has been created. This book assumes you ran these 39 <command>chown</command> commands.</para> 26 40 27 41 </sect1>
Note:
See TracChangeset
for help on using the changeset viewer.