Firewalls: Re: Problems with making / read-only

Firewalls
(August 1995)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Problems with making / read-only
From:	Brent @ GreatCircle . COM (Brent Chapman)
Date:	Tue, 1 Aug 1995 21:23:33 -0800
To:	blymn @ awadi . com . AU (Brett Lymn), firewalls @ greatcircle . com

At 12:39 PM 8/2/95, Brett Lymn wrote:
>Folks,
>        We are trying to build a new firewall and on of the things I
>wanted to do was make / and /user read only by diddling the SCSI Disk
>links.  For the moment we are just mounting the disk ro to see what
>falls over.  Most of the problems have been worked around in one way
>or another but we are having a major problem with syslogd - it insists
>on recreating /dev/log.  Have people solved this problem before?  If
>so, how?
>
>If it helps, we are running SunOS 4.1.3_U1 on the box

Wouldn't the same trick you use to make logging work within a chroot'ed FTP
partition work here?  That is, make /dev/log a symlink to something that
_is_ on a writable filesystem?


-Brent

--
Brent Chapman         | Great Circle Associates  | For Firewalls Tutorial info:
Brent @
 GreatCircle .
 COM | 1057 West Dana Street    | Tutorial-Info @
 GreatCircle .
 COM
+1 415 962 0841       | Mountain View, CA  94041 | http://www.greatcircle.com

Indexed By Date	Previous:	Firewalls Testing From: padgett @ tccslr . dnet . mmc . com (A. Padgett Peterson, P.E. Information Security)
Indexed By Date	Next:	Re: Huge gapping hole in Win95 From: sjs @ sunthing . sjsinc . com (Stefan Jon Silverman)
Indexed By Thread	Previous:	Problems with making / read-only From: blymn @ awadi . com . AU (Brett Lymn)
Indexed By Thread	Next:	Re: Problems with making / read-only From: blymn @ awadi . com . AU (Brett Lymn)