Moving /tmp to a separate partition. Advice?
in [Debian]
|
Prev: buisnesscard sid_d-i in "expert" mode asks different questions on amd64 vs powerpc
Next: Partition sizes in Squeeze (fstab contents)
From: Ron Johnson on 23 May 2010 07:30 On 05/23/2010 07:22 AM, Chris Bannister wrote: > On Sun, May 23, 2010 at 11:10:19AM +0200, Klistvud wrote: >> Dne, 23. 05. 2010 10:45:36 je Ron Johnson napisal(a): >>> >>> Why? >>> >> >> I frequently burn double-layer DVDs, requiring around 8GB of free >> space for temporary files. Until now, I had to do that on another >> rig. Also, I'm planning to do some video editing, which, I'm told, >> likewise requires huge amounts of temporary space. On my / >> partition, I have nowhere *near* that amount of free space. > > Maybe there is an option in the config file of the application which you > use to burn DVDs that allows you to set the tmp dir? > Exactly. Either via $TMP, $TMPDIR, a command-line option or app-specific variable. -- Dissent is patriotic, remember? -- To UNSUBSCRIBE, email to debian-user-REQUEST(a)lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster(a)lists.debian.org Archive: http://lists.debian.org/4BF90F4F.1060603(a)cox.net
From: Rob Owens on 23 May 2010 11:10 On Sun, May 23, 2010 at 10:37:18AM +0200, Klistvud wrote: > Howdy, fellow Debianites! > Given some extra hard drive space, I decided to move my /tmp dir > (currently located under / ) to a partition of its own. I am looking > forward to any advice, particularly of the been-there-done-that type: > * how should I configure my fstab entry? How does Debian installer do > it? > * is there anything Debian-specific to watch for? > * is it true that setting /tmp permissions to non-executable, while > hardening your box, prevents apt from working properly? > Don't forget that the permissions on /tmp are: rwxrwxrwt If /tmp is its own partition, you might consider using ext2 for speed. You could also consider RAID 0, if you have mulitple drives. -Rob -- To UNSUBSCRIBE, email to debian-user-REQUEST(a)lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster(a)lists.debian.org Archive: http://lists.debian.org/20100523150009.GC23289(a)aurora.owens.net
From: Andrew Reid on 23 May 2010 11:50 On Sunday 23 May 2010 04:37:18 Klistvud wrote: > Howdy, fellow Debianites! > Given some extra hard drive space, I decided to move my /tmp dir > (currently located under / ) to a partition of its own. I am looking > forward to any advice, particularly of the been-there-done-that type: > * how should I configure my fstab entry? How does Debian installer do > it? Watch out for permissions -- /tmp is "1777" (rwxrwxrwt), it has to be world-writable and have the sticky bit set, which ensures that only users who create files in there can write to them. Permissions come from the mounted FS, not the mount point, so make sure you set these permissions while it's mounted. Because of the world-writability, security conscious admins mount it nodev and nosuid. If you're more careful, you can mount it noexec, too, but that will break some third-party software installers that work by examining your system, writing a custom config script inside /tmp somewhere, and then running it. So your fstab entry might look like: > /dev/with/temp/ /tmp ext3 nosuid,nodev 0 2 > * is there anything Debian-specific to watch for? Not that I recall. > * is it true that setting /tmp permissions to non-executable, while > hardening your box, prevents apt from working properly? Setting /tmp to non-executable by the noexec mount option does break things, but as I said above, my recollection is that it mostly breaks third-party stuff. I think the apt scripts are all in /var/lib/dkpg/info, and are run from there. Setting the *directory* noexec seems very bad, since the exec bit on directories controls the ability to cd to it, and turning that off would make it largely useless. As to "why", on moderately-high-availability multi-user systems, I often put /tmp on a separate partition precisely so I can use mount options to globally control access. This is more important in a truly multi-user system than a home system, of course. Misbehaving apps rarely but sometimes blow the lid off of /tmp, and having it be on its own partition means this doesn't compromise the system as a whole, and you can easily figure out what's going on by seeing the logged errors and looking at "df" output. Some folks keep /var/log on a separate partition for similar reasons. Again, all of this is more important in a multi-user production environment. On my home systems, I mostly don't worry about this sort of thing. -- A. -- Andrew Reid / reidac(a)bellatlantic.net -- To UNSUBSCRIBE, email to debian-user-REQUEST(a)lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster(a)lists.debian.org Archive: http://lists.debian.org/201005231038.48482.reidac(a)bellatlantic.net
From: Klistvud on 23 May 2010 13:20 Dne, 23. 05. 2010 17:00:09 je Rob Owens napisal(a): > If /tmp is its own partition, you might consider using ext2 for speed. > You could also consider RAID 0, if you have mulitple drives. A good suggestion, thanx. What about ext4, is it slower or faster than ext2? -- Regards, Klistvud Certifiable Loonix User #481801 http://bufferoverflow.tiddlyspot.com -- To UNSUBSCRIBE, email to debian-user-REQUEST(a)lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster(a)lists.debian.org Archive: http://lists.debian.org/1274634861.6845.4(a)compax
From: Andrei Popescu on 23 May 2010 13:40
On Sun,23.May.10, 10:38:48, Andrew Reid wrote: [big snip] +1 (informative) Thanks, Andrei -- Offtopic discussions among Debian users and developers: http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic |