Changeset e6ab4b5 for chapter06/changingowner.xml
- Timestamp:
- 02/03/2006 06:23:22 PM (19 years ago)
- Children:
- fa994c9
- Parents:
- b4cd3c5
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
chapter06/changingowner.xml
rb4cd3c5 re6ab4b5 1 1 <?xml version="1.0" encoding="ISO-8859-1"?> 2 <!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.4//EN" "http://www.oasis-open.org/docbook/xml/4.4/docbookx.dtd" [ 2 <!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.4//EN" 3 "http://www.oasis-open.org/docbook/xml/4.4/docbookx.dtd" [ 3 4 <!ENTITY % general-entities SYSTEM "../general.ent"> 4 5 %general-entities; 5 6 ]> 7 6 8 <sect1 id="ch-system-changingowner"> 7 <title>Changing Ownership</title> 8 <?dbhtml filename="changingowner.html"?> 9 <?dbhtml filename="changingowner.html"?> 9 10 10 <para>Currently, the <filename class="directory">/tools</filename> 11 directory is owned by the user <emphasis>lfs</emphasis>, a user that 12 exists only on the host system. Although the <filename 13 class="directory">/tools</filename> directory can be deleted once the 14 LFS system has been finished, it can be retained to build additional 15 LFS systems. If the <filename class="directory">/tools</filename> 16 directory is kept as is, the files are owned by a user ID without a 17 corresponding account. This is dangerous because a user account 18 created later could get this same user ID and would own the <filename 19 class="directory">/tools</filename> directory and all the files 20 therein, thus exposing these files to possible malicious 21 manipulation.</para> 11 <title>Changing Ownership</title> 22 12 23 <para>To avoid this issue, add the <emphasis>lfs</emphasis> user to 24 the new LFS system later when creating the 25 <filename>/etc/passwd</filename> file, taking care to assign it the 26 same user and group IDs as on the host system. Alternatively, assign 27 the contents of the <filename class="directory">/tools</filename> 28 directory to user <emphasis>root</emphasis> by running the following 29 command:</para> 13 <para>Currently, the <filename class="directory">/tools</filename> directory 14 is owned by the user <systemitem class="username">lfs</systemitem>, a user 15 that exists only on the host system. Although the <filename 16 class="directory">/tools</filename> directory can be deleted once the LFS 17 system has been finished, it can be retained to build additional LFS systems. 18 If the <filename class="directory">/tools</filename> directory is kept as is, 19 the files are owned by a user ID without a corresponding account. This is 20 dangerous because a user account created later could get this same user ID 21 and would own the <filename class="directory">/tools</filename> directory 22 and all the files therein, thus exposing these files to possible malicious 23 manipulation.</para> 24 25 <para>To avoid this issue, add the <systemitem class="username">lfs</systemitem> 26 user to the new LFS system later when creating the 27 <filename>/etc/passwd</filename> file, taking care to assign it the same user 28 and group IDs as on the host system. Alternatively, assign the contents of 29 the <filename class="directory">/tools</filename> directory to user 30 <systemitem class="username">root</systemitem> by running the following 31 command:</para> 30 32 31 33 <screen><userinput>chown -R 0:0 /tools</userinput></screen> 32 34 33 <para>The command uses <parameter>0:0</parameter> instead of 34 <parameter>root:root</parameter>, because <command>chown</command> 35 is unable to resolve the name <quote>root</quote> until the password 36 file has been created. This book assumes you ran this 37 <command>chown</command> command.</para> 35 <para>The command uses <parameter>0:0</parameter> instead of 36 <parameter>root:root</parameter>, because <command>chown</command> 37 is unable to resolve the name <quote>root</quote> until the 38 <filename>passwd</filename> file has been created.</para> 38 39 39 40 </sect1> 40
Note:
See TracChangeset
for help on using the changeset viewer.