Re: moving /bin

From: Richard Kettlewell <rjk@xxxxxxxxxxxxxxx>
Date: Thu, 13 Jan 2011 20:36:21 +0000

unruh <unruh@xxxxxxxxxxxxxxxxxxxxxxx> writes:

Sidney Lambe <sidneylambe@xxxxxxxxxxxxxxxxx> wrote:

Richard Kettlewell <rjk@xxxxxxxxxxxxxxx> wrote:

/bin contains the programs required before /usr has been mounted
(for instance, in order to mount other filesystems in the first
place). The most obvious example is /bin/mount. Therefore it has to
be on the root filesystem.

/bin also contains a LOT of stuff not needed at boot-time, so he
could keep a stripped-down version on the root filesystem. To make
it really tiny, you could strip down busybox...

/bin is already pretty stripped down. I would hesitate about moving
any of them.

Also, "it's more complicated than that": some of the things in /bin (and
/sbin) are there not because they are required for a routine boot but
because they are useful to have around in an emergency. mkfs and fuser
are probably be good examples.

At 10MB for the pair (on this here Debian box), you'd have to be in a
slightly specialized situation before it's worth the effort to reduce
them, too.

--
http://www.greenend.org.uk/rjk/
.

Follow-Ups:
- Re: moving /bin
  - From: Sidney Lambe

References:
- moving /bin
  - From: Bob Tennent
- Re: moving /bin
  - From: Richard Kettlewell
- Re: moving /bin
  - From: Sidney Lambe
- Re: moving /bin
  - From: unruh

Prev by Date: Re: moving /bin
Next by Date: Re: moving /bin
Previous by thread: Re: moving /bin
Next by thread: Re: moving /bin
Index(es):
- Date
- Thread

Relevant Pages

Re: bin, sbin, etc as seperate LVM volumes
... that's where mount lives, and you almost certainly need to mount ... Why do you think you need /bin and /sbin on separate LVM volumes, ... Filesystem Type Size Used Avail Use% Mounted on ... the root filesystem mounted read-only, if the OP's concern is security ...
(comp.os.linux.misc)
Re: moving /bin
... Therefore it has to be on the root filesystem. ... he could keep a stripped-down version on the root filesystem. ... The OP described a specialized situation. ...
(comp.os.linux.misc)
Re: mount() function problem !
... mount() attaches the filesystem specified by source (which is often a device name, ... point within a file system. ... details of the options available for each filesystem type. ... Specifies the journalling mode for file data. ...
(comp.lang.c)
Re: [autofs] [RFC] Towards a Modern Autofs
... >entangling autofs with that work. ... >filesystem it's willing to export. ... >>map is mounted. ... The result is that some users will see mount points ...
(Linux-Kernel)
Re: UFS Bug: FreeBSD 6.1/6.2/7.0: MOKB-08-11-2006, CVE-2006-5824, MOKB-03
... They can simply mount a filesystem with any number of SUID ... root binaries on it and have their way with the box. ... They have physical access to the machine. ...
(FreeBSD-Security)