Sponsored link
Serve your customers, not your servers, with VERIO Linux VPS. Full-access test-drive here.
| Weekly edition | Kernel | Security | Distributions | Search |
| Archives | Calendar | Subscribe | Write for LWN | LWN.net FAQ |
/usr/local/ ?
/usr/local/ ?
Posted Apr 8, 2004 13:08 UTC (Thu) by horen (subscriber, #2514)In reply to: /usr/local/ ? by alspnost
Parent article: The User-Accessible Filesystem Hierarchy Standard
Yes - it strikes me that having a group-writeable /usr/local, and putting select users into an "install" group, is a more elegant solution. That way, the group/user distinction still allows people to install programs that are usable by only themselves, only the group, or everyone....
Yikes! This looks like a job for RBAC
Perhaps getting up-to-speed with SELinux is more mission-critical than many of us would care to admit; or, with the degree-of-complexity it possesses, perhaps creating the appropriate tools for administering it.
OTOH, I really do not want my desktop Linux users to be installing their own software packages. In the US Army, we had a saying: "The two most dangerous people are a Private with a rifle, and a 2LT with a pen." I'd like to add to that a PhD faculty member (w/ or w/o the root password).
(Log in to post comments)
/usr/local/ ?
Posted Apr 8, 2004 16:18 UTC (Thu) by tjc (subscriber, #137) [Link]
OTOH, I really do not want my desktop Linux users to be installing their own software packages.Yeah. Whether a malicious program is installed in /usr/local or /home/share/.system doesn't really matter too much; the end result is about the same.