I don't know why in / the symbolic link var -> /mnt/hda5/var got
replaced. Are you sure it was there in the first place and really linked
to where you wanted?
You asked about mounting a partition read only. According to "man
mount" the option "defaults" means "rw,suid,dev,exec,auto,nouser,async".
In /etc/fstab replace "defaults" with "ro,suid,dev,exec,auto,nouser,async"
to get the same thing as you had before, except the partition will be
mounted readonly. Or after a partition has been mounted you can change it
to readonly with "mount -o remount,ro <partition name>", where "<partition
name>" might be something like "/usr" if /usr has its own partition.
While I think doing this with /usr increases security, it doesn't increase
it much. You'll still be vulnerable to exploits which allow someone to
change files in /bin or /etc, and mounting /usr read only won't help
against someone who gets system privileges because they can do
"mount -o remount,rw /usr".
Steven Yellin
On Sun, 27 Feb 2005, bj wrote:
>
>
>
> -----Original Message-----
> From: Steven J. Yellin [mailto:yellin@xxxxxxxxxxxxxxxxx]
> Sent: Sunday, February 27, 2005 11:49 AM
> To: bj
> Cc: 'Discussion of Red Hat Linux 9 (Shrike)'
> Subject: RE: System stops because /var/log not found after moving to new
> partition
>
>
> In your list of what I assume is / notice that var, usr, home and tmp
> are missing. Maybe the last time you made symbolic links you really put
> them somewhere else, such as in /root. Try again making them with, say,
>
> cd /
> ln -s /mnt/hda5/var
> ln -s /mnt/hda5/tmp
> ln -s /mnt/hda6/usr
> ln -s /mnt/hda6/home
>
> and verify that these commands did what you wanted. For example, after
> the symbolic links are present you should find libncurses.so.5 in
> /usr/lib.
> By the way, one way people sometimes make their system less vulnerable
> to certain types of exploits is to make /usr readonly by mounting it on
> its own partition and mounting the partition readonly. You cannot do that
> with /home and /usr in the same partition.
>
> Steven Yellin
>
> On Sat, 26 Feb 2005, bj wrote:
>
> >
> >
> > -----Original Message-----
> > From: Steven J. Yellin [mailto:yellin@xxxxxxxxxxxxxxxxx]
> > Sent: Sunday, February 27, 2005 8:56 AM
> > To: Discussion of Red Hat Linux 9 (Shrike)
> > Cc: bhamal@xxxxxxxxxxxx
> > Subject: Re: System stops because /var/log not found after moving to new
> > partition
> >
> >
> > More comments on the subject:
> > One way to test the effect of disabling dma is to "try setting
> > ide=nodma in your grub.conf or on the bootup command line" as suggested in
> > https://www.redhat.com/archives/redhat-list/2003-June/msg01639.html . And
> > of course the problem might be that your disk is dying, in which case the
> > solution is to back up what you want to keep and then replace the disk.
> >
> > Steven Yellin
> >
> > On Sat, 26 Feb 2005, Steven J. Yellin wrote:
> >
> > > Your dmesg shows disk errors:
> > >
> > > hda: dma_intr: status=0x51 { DriveReady SeekComplete Error }
> > > hda: dma_intr: error=0x84 { DriveStatusError BadCRC }
> > >
> > > Check that the cables are connected well. Maybe disabling dma would
> > > help (man hdparm, /etc/sysconfig/harddisks), though it would slow down
> > > your I/O.
> > >
> > > Steven Yellin
> >
> >
> >
> >
> > Hi!
> >
> > Thank you for the prompt reply .
> >
> > The cables are connected .
> >
> > The error used appear even when my system booted fine before I moved the
> > /var /tmp & /usr .
> >
> > SO it seems now my system has 2 errors .
> >
> > 1. the system needs to find the /var , /tmp & /usr
> > 2. check on hdd degradation .
> >
> >
> > Here is on #1 .
> >
> > Since I have Red Hat 8 , I had downloaded and installed
> (configure;make;make
> > install) the latest stable qt-x11-free-3.3.4 from the /home directory
> which
> > I moved .
> >
> > My understanding was that wherever I downloaded the library will be still
> be
> > installed under /lib .
> >
> > My /lib is where it was from the beginning . I have not moved it .
> >
> > The system hangs means , the boot process shows "Starting system logger "
> > then just stays there because it could not find the new /var that has been
> > moved to /mnt/hda5/var .
> >
> > The boot process also gives messages such as :-
> >
> > /etc/rc.d/rc.sysinit:line 596:/var/run/utmp : no such file or directory
> >
> > /etc/rc.d/sysinit:line 744: /var/log/dmesg:no such file or directory
> >
> > touch:creating 'var/lock/subsys/keytable" no such file
> >
> > Hence , it does not find the moved var .
> >
> > Please find attached the df & ls -l listings :-
> >
> > ls
> >
> > total 196
> > drwxr-xr-x 3 root root 4096 Feb 13 10:14 applications
> > drwxr-xr-x 5 root root 4096 Feb 8 10:01 backup
> > drwxr-xr-x 2 root root 4096 Feb 5 04:15 bin
> > drwxr-xr-x 3 root root 4096 Feb 25 10:49 boot
> > drwxr-xr-x 21 root root 118784 Feb 26 23:00 dev
> > drwxr-xr-x 70 root root 8192 Feb 26 23:01 etc
> > drwxr-xr-x 2 root root 4096 Jun 21 2001 initrd
> > drwxr-xr-x 6 root root 4096 Feb 4 22:49 lib
> > drwx------ 2 root root 16384 Jun 26 2004 lost+found
> > drwxr-xr-x 2 root root 4096 Aug 27 2002 misc
> > drwxr-xr-x 8 root root 4096 Feb 26 08:44 mnt
> > drwxr-xr-x 2 root root 4096 Aug 23 1999 opt
> > -rw-r--r-- 1 root root 0 Feb 26 22:32 other
> > dr-xr-xr-x 33 root root 0 Feb 26 18:00 proc
> > drwxr-x--- 31 root root 4096 Feb 25 10:52 root
> > drwxr-xr-x 2 root root 8192 Feb 4 23:04 sbin
> > drwxr-xr-x 3 root root 4096 Feb 5 04:10 tftpboot
> >
> > df
> >
> > Filesystem 1K-blocks Used Available Use% Mounted on
> > /dev/hda2 4134932 410416 3514468 11% /
> > /dev/hda5 10056868 284348 9261656 3% /mnt/hda5
> > /dev/hda6 19765692 4879948 13881684 27% /mnt/hda6
> > none 256972 0 256972 0% /dev/shm
> > /dev/sda1 1025840 535856 489984 53% /mnt/usb
> >
> > Thanks,
> > bj
>
>
> Hi Steven !
>
> Thank you for the prompt reply.
>
> 80 % of the solution worked .
>
> Once I cd / and give the four link (ln ) commands three work .
> The result running file command on the links :-
>
> usr: symbolic link to /mnt/hda6/usr
>
> tmp: symbolic link to /mnt/hda5/tmp
>
>
> But the link to var didn't .
>
> It gives no error message. But when I type reboot , it shows that it could
> not find a file shutdown.pid under /var .
> Once I reboot , it gives quite few error messages that shows that it could
> not still find /var.
>
> It does stop around 5 minutes trying to start the system logger & after 5
> minutes , it keep boots successfully.
>
> After I log in I notice a /var directory has been created .
> This /var has been created auto , as I didn't create it .
>
> The system is auto creating this directory & removing the sym link ,and so
> it does not find the other needed files in /var.
>
> Why do you think this is happening ?
>
> In addition I would also like to have the command to mount a partition read
> only .
>
> Cheers,
> bj
>
>
> When I do ls -lR , it gives out the ff contents :-
>
> var:
> total 4
> drwxr-xr-x 3 root root 4096 Feb 27 09:28 lib
>
> var/lib:
> total 8
> -rw------- 1 root root 512 Feb 27 09:28 random-seed
> drwxr-xr-x 2 root root 4096 Feb 27 09:22 rpm
>
> var/lib/rpm:
> total 308
> -rw-r--r-- 1 root root 8192 Feb 27 09:22 __db.001
> -rw-r--r-- 1 root root 1310720 Feb 27 09:22 __db.002
> -rw-r--r-- 1 root root 360448 Feb 27 09:22 __db.003
> -rw-r--r-- 1 root root 12288 Feb 27 09:22 Name
> -rw-r--r-- 1 root root 12288 Feb 27 09:22 Packages
>
> --
> Shrike-list mailing list
> Shrike-list@xxxxxxxxxx
> https://www.redhat.com/mailman/listinfo/shrike-list
>
--
Shrike-list mailing list
Shrike-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/shrike-list
