• 0 Posts
  • 219 Comments
Joined 2 years ago
cake
Cake day: June 12th, 2023

help-circle

  • Short answer: yes.

    One of the tenets of security is that a user or process should have only enough access to do what it needs, and then no more. So your web server, your user account, to your mail server, should have exactly what they need, and usually that’s been intricately planned by the distro.

    If you subvert it you could be writing files as root that www-data now can’t read or write. This kind of error is sometimes obvious and sometimes very subtle.

    Especially if you’re new to this different access model, tread carefully.

    Great news! If you need it up, many distros are really great at allowing you cm to compare permissions and reset them. The bad news is that maybe you’re not on one of those. But you could be okay.


  • corsicanguppy@lemmy.catoLinux@lemmy.mlThank you
    link
    fedilink
    English
    arrow-up
    5
    ·
    1 day ago

    Hey. Thanks for the update! As someone whose experience was heavily windows apart from some failed Linux attempts, your experience switching now is an excellent comparison.

    Glad the story got better in the second act.

    Keep the story going. Please update.

    Thanks for persevering also.







  • # rpm -Vp https://download.rockylinux.org/pub/rocky/9/BaseOS/x86_64/os/Packages/n/net-tools-2.0-0.64.20160912git.el9.x86_64.rpm

    Oh. Glad to know every part of that package is absolutely as delivered, and signatures are clean in a chain from the distro’s published keys down to the checksums on every file deployed.

    Yes, this has saved my bacon. Yes, this has absolutely shut some distros out of consideration.



  • Once set, you cannot resize them properly

    This is untrue.

    I’ve resized and moved partitions on a remote host during a reboot – i.e. doing the change in a batch during that boot.

    It’s possible, and for most other resizes it’s easy enough and worth it for the benefits. Do you want to do it daily? No. Do you want to half-ass it and not pay attention during? Also no.




  • corsicanguppy@lemmy.catoLinux@lemmy.mlShare your partition scheme!
    link
    fedilink
    English
    arrow-up
    2
    ·
    edit-2
    3 days ago
    EFI
    83:boot(e4fs)
    8e:lvm(e4fs)
    bf:zfs
    

    This is just for /dev/sda or so, and implies non-redundant root disks because mirroring is done by the hypervisor. I’ve been 20 years doing virtualization, and I’m really starting to forget the last vestiges of my mdadm fdisk layout.

    So many people in this thread have no idea why you’d want separate allocation for /home and /tmp and others. Are we missing proper mentorship?