source: chapter07/changingowner.xml@ 9174a66

10.0 10.0-rc1 10.1 10.1-rc1 11.0 11.0-rc1 11.0-rc2 11.0-rc3 11.1 11.1-rc1 11.2 11.2-rc1 arm ml-11.0 multilib s6-init trunk xry111/arm64 xry111/clfs-ng xry111/git-transition xry111/glibc-2.34 xry111/lfs-next xry111/pip3 xry111/queue-11.3 xry111/rust-wip-20221008 xry111/tester-nohack xry111/usr-move
Last change on this file since 9174a66 was 9174a66, checked in by Xi Ruoyao <xry111@…>, 2 years ago

minor rewords in the beginning of chap 7

git-svn-id: 4aa44e1e-78dd-0310-a6d2-fbcd4c07a689

  • Property mode set to 100644
File size: 1.7 KB
1<?xml version="1.0" encoding="ISO-8859-1"?>
2<!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
3 "" [
4 <!ENTITY % general-entities SYSTEM "../general.ent">
5 %general-entities;
8<sect1 id="ch-tools-changingowner">
9 <?dbhtml filename="changingowner.html"?>
11 <title>Changing Ownership</title>
13 <note>
14 <para>The commands in the remainder of this book must be performed while
15 logged in as user <systemitem class="username">root</systemitem> and no
16 longer as user <systemitem class="username">lfs</systemitem>. Also, double
17 check that <envar>$LFS</envar> is set in <systemitem
18 class="username">root</systemitem>'s environment.</para>
19 </note>
21 <para>Currently, the whole directory hierarchy in <filename
22 class="directory">$LFS</filename>
23 is owned by the user <systemitem class="username">lfs</systemitem>, a user
24 that exists only on the host system. If the directories and files under <filename
25 class="directory">$LFS</filename> are kept as they are, they will be
26 owned by a user ID without a corresponding account. This is dangerous because
27 a user account created later could get this same user ID and would own all
28 the files under <filename class="directory">$LFS</filename>, thus exposing
29 these files to possible malicious manipulation.</para>
31 <para>To address this issue, change the
32 ownership of the <filename class="directory">$LFS/*</filename> directories to
33 user <systemitem class="username">root</systemitem> by running the following
34 command:</para>
36<screen><userinput>chown -R root:root $LFS/{usr,lib,var,etc,bin,sbin,tools}
37case $(uname -m) in
38 x86_64) chown -R root:root $LFS/lib64 ;;
Note: See TracBrowser for help on using the repository browser.