Robert Connolly cendres at
Mon Jan 5 06:28:20 PST 2004

On January 5, 2004 07:20 am, Spencer Collyer wrote:
> On Sun, 04 Jan 2004 21:07:09 -0500, ashes wrote:
> > Decide on a default system accounting policy. (Process, filesystem, and
> > memory access)
> I assume this would include recommendations on partitioning and partition
> flags?

The only thing I can think to add to this is nosuid to /usr.
Sizes need to be refined, but this will work for an LFS install.
I've tried using 64M for / but ran out of space because of debugging symbols.
If they were stipped as part of install, / could be much smaller.
Using tmpfs for /tmp totally depends on how much ram you have to spare, I have 

129M	/dev/hdb5	/		ext3     defaults        1     1
256M	/dev/hdb2	swap	swap     pri=1           0     0
65M		/dev/hdb1	/boot	ext2     noauto,noexec,nosuid,nodev 0 0
129M	/dev/hdb6	/var		ext3     rw,noexec,nosuid,nodev 0 0
982M	/dev/hdb7	/home	reiserfs rw,noexec,nosuid,nodev 0 0
2.0G		/dev/hdb8	/home/ashes	reiserfs rw,noexec,nosuid,nodev 0 0
1.2G		/dev/hdb9	/opt		reiserfs rw,nosuid,nodev 0 0
2.0G		/dev/hdb10	/source	reiserfs rw,nosuid,nodev 0 0
982M	/dev/hdb11	/tools	reiserfs noauto,rw,nosuid,nodev 0 0
12G		/dev/hdb12	/usr		reiserfs rw,nodev 0 0
tmpfs	/tmp		tmpfs    rw,nosuid,nodev,noatime,mode=1777,size=32m 0 0
tmpfs	/var/tmp	tmpfs    rw,nosuid,nodev,noatime,mode=1777,size=16m 0 0
proc		/proc	proc     defaults        0     0
devpts	/dev/pts	devpts   gid=4,mode=620  0     0
shm		/dev/shm	tmpfs    defaults        0     0

I also want to note, if encrypted partitions are used, a dump is a security 
problem because it will dump in plain text. I think it should be disabled.

More information about the hlfs-dev mailing list