start form scrach what is the best seure directory structure to use?
Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
start form scrach what is the best seure directory structure to use?
Hello,
I am going to reinstall Linux RedHat Enterprise, and I would like to know the most or a good directory structure for security
Thanks helpers and for getting me on the way!
Hello helper and thank for helping me out and getting me on the way! I am going to reinstall Linux RedHat Enterprise, and I would like to know the most or a good directory structure for security
I'm guessing you mean filesystems rather than directories (if not, say).
When you create new filesystems, it depends on what you want to achieve. Things to consider include
- larger filesystems take less management but are more likely to corrupt and take longer to recover after corruption.
- a filesystem can be set read-only, or not permit SUID files or devices, so if there are sections of your system that can be read-only (e.g. /usr for lots of security) then put those in separate filesystems.
- smaller filesystems restrict the damage that an individual user can do - they can fill up one filesystem but probably not others.
- if you are not using LVM, increasing the size of filesystems once created is a pain and realistically you will be doing a backup/restore if you get the sizing wrong.
I would recommend having separate filesystems for /usr, /var, tmp, /, /boot, /home and, if different, the application and user data.
Sorry, Yes file systems
Thank you very mush this is a great start, it's a balancing act to know which way to go. Wat you are saying is true, problems if it is to big and problems if it is too small.
I was really only thinking of the security side of things as I do not know much about Linux and wanted to have a base to build from, but knowing me I will do hundreds of install before I get it right.
I appreciate, your time and sharing your skills with me
Thanks again.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.