From 81fd230419b0cfd052b08fc1ed352bb7d49975df Mon Sep 17 00:00:00 2001 From: Gerard Beekmans Date: Sat, 19 Feb 2005 22:16:42 +0000 Subject: Trunk is now identical to Testing git-svn-id: http://svn.linuxfromscratch.org/LFS/trunk/BOOK@4648 4aa44e1e-78dd-0310-a6d2-fbcd4c07a689 --- chapter06/changingowner.xml | 28 +++++++++++++++++++++++++++- 1 file changed, 27 insertions(+), 1 deletion(-) (limited to 'chapter06/changingowner.xml') diff --git a/chapter06/changingowner.xml b/chapter06/changingowner.xml index 9d53404f6..a22e199c5 100644 --- a/chapter06/changingowner.xml +++ b/chapter06/changingowner.xml @@ -7,8 +7,34 @@ Changing Ownership -Change the owner of /tools: +Currently, the /tools +directory is owned by the user lfs, a user that +exists only on the host system. Although the /tools directory can be deleted once the +LFS system has been finished, it can be retained to build additional +LFS systems. If the /tools +directory is kept as is, the files are owned by a user ID without a +corresponding account. This is dangerous because a user account +created later could get this same user ID and would own the /tools directory and all the files +therein, thus exposing these files to possible malicious +manipulation. + +To avoid this issue, add the lfs user to +the new LFS system later when creating the +/etc/passwd file, taking care to assign it the +same user and group IDs as on the host system. Alternatively, assign +the contents of the /tools +directory to user root by running the following +command: chown -R 0:0 /tools +The command uses 0:0 instead of +root:root, because chown +is unable to resolve the name root until the password +file has been created. This book assumes you ran this +chown command. + + -- cgit v1.2.3-54-g00ecf