Howdy, fellow Debianites!
Given some extra hard drive space, I decided to move my /tmp dir
(currently located under / ) to a partition of its own. I am looking
forward to any advice, particularly of the been-there-done-that type:
* how should I configure my fstab entry? How does Debian installer do
it?

* is there anything Debian-specific to watch for?
* is it true that setting /tmp permissions to non-executable, while
hardening your box, prevents apt from working properly?


--
TIA,

Klistvud
Certifiable Loonix User #481801
http://bufferoverflow.tiddlyspot.com


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: 1274603838.6845.1@compax">http://lists.debian.org/1274603838.6845.1@compax

On 05/23/2010 03:37 AM, Klistvud wrote:

Howdy, fellow Debianites!
Given some extra hard drive space, I decided to move my /tmp dir
(currently located under / ) to a partition of its own. I am looking


Why?

--
Dissent is patriotic, remember?


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Archive: 4BF8EB30.5060005@cox.net">http://lists.debian.org/4BF8EB30.5060005@cox.net


Sun May 23 11:30:06 2010
Return-path: <bounce-debian-user=tom=linux-archive.org@lists.debian.org>
Envelope-to: tom@linux-archive.org
Delivery-date: Sun, 23 May 2010 11:14:54 +0300
Received: from liszt.debian.org ([82.195.75.100]:49264)
by s2.java-tips.org with esmtps (TLSv1:AES256-SHA:256)
(Exim 4.69)
(envelope-from <bounce-debian-user=tom=linux-archive.org@lists.debian.org>)
id 1OG6Ki-0004jE-DC
for tom@linux-archive.org; Sun, 23 May 2010 11:14:53 +0300
Received: from localhost (localhost [127.0.0.1])
by liszt.debian.org (Postfix) with QMQP
id 76C5713A5452; Sun, 23 May 2010 08:50:51 +0000 (UTC)
Old-Return-Path: <gpall@ccf.auth.gr>
X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on liszt.debian.org
X-Spam-Level:
X-Spam-Status: No, score=-11.5 required=4.0 tests=LDOSUBSCRIBER,LDO_WHITELIST,

MONEY,RCVD_IN_DNSWL_LOW autolearn=failed version=3.2.5
X-Original-To: lists-debian-user@liszt.debian.org
Delivered-To: lists-debian-user@liszt.debian.org
Received: from localhost (localhost [127.0.0.1])
by liszt.debian.org (Postfix) with ESMTP id 7138A13A5447
for <lists-debian-user@liszt.debian.org>; Sun, 23 May 2010 08:50:45 +0000 (UTC)
X-Virus-Scanned: at lists.debian.org with policy bank en-ht
X-Amavis-Spam-Status: No, score=-6 tagged_above=-10000 required=5.3
tests=[BAYES_00=-2, BODY_8BITS=1.5, LDO_WHITELIST=-5, MONEY=0.5,
RCVD_IN_DNSWL_LOW=-1] autolearn=ham
Received: from liszt.debian.org ([127.0.0.1])
by localhost (lists.debian.org [127.0.0.1]) (amavisd-new, port 2525)
with ESMTP id eIatXfbBqQA3 for <lists-debian-user@liszt.debian.org>;
Sun, 23 May 2010 08:50:38 +0000 (UTC)
X-policyd-weight: using cached result; rate: -7
Received: from hermes3.ccf.auth.gr (hermes3.ccf.auth.gr [155.207.1.69])
(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
(Client CN "AUTH Mail Servers", Issuer "AUTH Network Operations Center Certification Authority R3" (not verified))
by liszt.debian.org (Postfix) with ESMTPS id EBE3C13A50F3
for <debian-user@lists.debian.org>; Sun, 23 May 2010 08:50:37 +0000 (UTC)
Received: from [192.168.1.200] (79.103.217.59.dsl.dyn.forthnet.gr [79.103.217.59])
(authenticated bits=0)
by hermes3.ccf.auth.gr (8.14.4/8.14.4) with ESMTP id o4N8oVNt014099
(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT);
Sun, 23 May 2010 11:50:32 +0300
Message-ID: <4BF8EC56.7040706@ccf.auth.gr>
Date: Sun, 23 May 2010 11:50:30 +0300
From: =?UTF-8?B?zpPOuc+Oz4HOs86/z4IgzqDOrM67zrvOsc+C?=
<gpall@ccf.auth.gr>
User-Agent: Mozilla-Thunderbird 2.0.0.22 (X11/20090707)
MIME-Version: 1.0
To: AG <computing.account@googlemail.com>
CC: debian-user@lists.debian.org
Subject: Re: nepomuk indexer in systray
References: <4BF6707A.1010600@ccf.auth.gr> <4BF7B062.8070201@gmail.com>
In-Reply-To: <4BF7B062.8070201@gmail.com>
X-Enigmail-Version: 0.95.0
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=sha1; boundary="------------ms010501010305060706080405"
X-Virus-Scanned: clamav-milter 0.96 at hermes1
X-Virus-Status: Clean
X-Rc-Virus: 2007-09-13_01
X-Rc-Spam: 2008-11-04_01
Resent-Message-ID: <0rS964MF7CO.A.9fH.rxO-LB@liszt>
Resent-From: debian-user@lists.debian.org
X-Mailing-List: <debian-user@lists.debian.org> archive/latest/577423
X-Loop: debian-user@lists.debian.org
List-Id: <debian-user.lists.debian.org>
List-Post: <mailto:debian-user@lists.debian.org>
List-Help: <mailto:debian-user-request@lists.debian.org?subject=help>
List-Subscribe: <mailto:debian-user-request@lists.debian.org?subject=subscribe>
List-Unsubscribe: <mailto:debian-user-request@lists.debian.org?subject=unsubscribe>
Precedence: list
Resent-Sender: debian-user-request@lists.debian.org
Resent-Date: Sun, 23 May 2010 08:50:51 +0000 (UTC)

This is a cryptographically signed message in MIME format.

--------------ms010501010305060706080405
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

AG wrote:

On 21/05/10 12:37, =CE=93=CE=B9=CF=8E=CF=81=CE=B3=CE=BF=CF=82 =CE=A0=CE=

=AC=CE=BB=CE=BB=CE=B1=CF=82 wrote:

Hello to all!
I just upgraded my debian testing, installing nepomuk search. My
problem is that the indexer every now and then appears in the systray
for a second or so, and then disappears, which is very distracting
(or am I very sensitive? :-) )... Anyone knows how to stop the icon
from getting on my nerves? :-)

Thanks!
G.



Aside from disabling the damn thing from working automatically in the
first place - no.

KDE4 is becoming increasingly bloated and does seem to be calling in
an increasing amount of dependencies and additional database-related
libraries which then seemingly take over. Not OK.

My $0.02 worth.

AG




Agree... I also did not understand why some days ago as I upgraded my
debian testing + KDE, a hundred packets related to nepomuk were
installed, along with mysql server 5.1, and today as I upraded again,
mysql server was removed. What was that???



--------------ms010501010305060706080405
Content-Type: application/x-pkcs7-signature; name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="smime.p7s"
Content-Description: S/MIME Cryptographic Signature

MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCS qGSIb3DQEHAQAAoIIhHjCC
CAswggbzoAMCAQICBQEAAAARMA0GCSqGSIb3DQEBBQUAMIGVMQ swCQYDVQQGEwJHUjFEMEIG
A1UEChM7SGVsbGVuaWMgQWNhZGVtaWMgYW5kIFJlc2VhcmNoIE luc3RpdHV0aW9ucyBDZXJ0
LiBBdXRob3JpdHkxQDA+BgNVBAMTN0hlbGxlbmljIEFjYWRlbW ljIGFuZCBSZXNlYXJjaCBJ
bnN0aXR1dGlvbnMgUm9vdENBIDIwMDYwHhcNMDkwMjE4MTEzOT A5WhcNMTcwMjE2MTEzOTA5
WjCBnjELMAkGA1UEBhMCR1IxLTArBgNVBAoTJEFyaXN0b3RsZS BVbml2ZXJzaXR5IG9mIFRo
ZXNzYWxvbmlraTE7MDkGA1UEAxMyQXJpc3RvdGxlIFVuaXZlcn NpdHkgb2YgVGhlc3NhbG9u
aWtpIENlbnRyYWwgQ0EgUjIxIzAhBgkqhkiG9w0BCQEWFHBraW FkbWluQGNjZi5hdXRoLmdy
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAymcX6u ssFCSCQe80wltOvHEQWwQp
SVqqy3i9CcjyogzeF7IRQEjMQghyvMwDteFJEpr4e9CDrWd6sp N6lmtDuh3/6iiRpfiRHUf5
zXqmR/7qf6ykpKPyuu/xbqwqoQOOLIHomRtE2EiC3XxcdaAjhDrwYrf7Yfh6Kv6PEUw8f Vwx
GYl47itXxFdiT2kW01K+IUKTbWdkQmPuz2FK4imfbbKyDpl8vW 6a6w3Tv38HyTCNlxLh0uad
V+jsV9ZxdvvX1BWoVer/CjQdgWVwl9IX0wiN8ydDpyv3jMDd2xtMID0tUBbR3hUrezCy9S S5
QalstDWhF9JNTacGuvq2tpllTQIDAQABo4IEVTCCBFEwDwYDVR 0TAQH/BAUwAwEB/zALBgNV
HQ8EBAMCAQYwEQYJYIZIAYb4QgEBBAQDAgAHMB0GA1UdDgQWBB QYbmzt1V97ykSHIJYF2nkO
/mstPjAfBgNVHREEGDAWgRRwa2lhZG1pbkBjY2YuYXV0aC5ncjA XBgNVHRIEEDAOgQxjYUBo
YXJpY2EuZ3IwRgYDVR0fBD8wPTA7oDmgN4Y1aHR0cDovL2NybH YxLmhhcmljYS5nci9IYXJp
Y2FSb290Q0EyMDA2L2NybHYxLmRlci5jcmwwIwYJYIZIAYb4Qg EEBBYWFG5zX3Jldm9rZV9x
dWVyeS5waHA/MDYGCWCGSAGG+EIBAgQpFidodHRwOi8vY3JsdjEuaGFyaWNhLm dyL0hhcmlj
YVJvb3RDQTIwMDYwRwYJYIZIAYb4QgEIBDoWOGh0dHA6Ly93d3 cuaGFyaWNhLmdyL2RvY3Vt
ZW50cy9IYXJpY2FSb290Q0EyMDA2L0NQUy5odG1sMIGaBglghk gBhvhCAQ0EgYwWgYlUaGlz
IGNlcnRpZmljYXRlIGlzIHN1YmplY3QgdG8gR3JlZWsgbGF3cy BhbmQgb3VyIENQUy4gVGhp
cyBDZXJ0aWZpY2F0ZSBtdXN0IG9ubHkgYmUgdXNlZCBmb3IgYW NhZGVtaWMsIHJlc2VhcmNo
IG9yIGVkdWNhdGlvbmFsIHB1cnBvc2VzLjCBwgYDVR0jBIG6MI G3gBS4ju9E3e77Dxz/oWSX
qpKot3CoGKGBm6SBmDCBlTELMAkGA1UEBhMCR1IxRDBCBgNVBA oTO0hlbGxlbmljIEFjYWRl
bWljIGFuZCBSZXNlYXJjaCBJbnN0aXR1dGlvbnMgQ2VydC4gQX V0aG9yaXR5MUAwPgYDVQQD
EzdIZWxsZW5pYyBBY2FkZW1pYyBhbmQgUmVzZWFyY2ggSW5zdG l0dXRpb25zIFJvb3RDQSAy
MDA2ggEAMDEGCCsGAQUFBwEBBCUwIzAhBggrBgEFBQcwAYYVaH R0cDovL29jc3AuaGFyaWNh
LmdyMIIBQAYDVR0gBIIBNzCCATMwggEvBgwrBgEEAYHPEQEAAQ AwggEdMDMGCCsGAQUFBwIB
FidodHRwOi8vd3d3LmhhcmljYS5nci9kb2N1bWVudHMvQ1BTLm h0bWwwgeUGCCsGAQUFBwIC
MIHYMEoWQ0hlbGxlbmljIEFjYWRlbWljIGFuZCBSZXNlYXJjaC BJbnN0aXR1dGlvbnMgQ2Vy
dGlmaWNhdGlvbiBBdXRob3JpdHkwAwIBARqBiVRoaXMgY2VydG lmaWNhdGUgaXMgc3ViamVj
dCB0byBHcmVlayBsYXdzIGFuZCBvdXIgQ1BTLiBUaGlzIENlcn RpZmljYXRlIG11c3Qgb25s
eSBiZSB1c2VkIGZvciBhY2FkZW1pYywgcmVzZWFyY2ggb3IgZW R1Y2F0aW9uYWwgcHVycG9z
ZXMuMA0GCSqGSIb3DQEBBQUAA4IBAQAbK+ZXLqS+WkzrInBy5d eMBNjH9JJ4m9+rQ5IACPPv
hxW0uOLHJEW039yR0tibmLN4i2RFmVvujsoW8ec4qLf1Z4b2jO JHB3lAXKXz0bh5UGp8Bl4a
CWA8m0G2SctcZB0WiKO8TQ88LlhIsY5sYxjsKdPuJBSg9ap5kG rPFOed7igsuBEWQS/3/qGs
ubvQq+Mgt2COUCtRfdzvPA9s9+h0eGRQmkrgaYOLS8G7XuJLBb 9lDkLKe8i8pwrUThKBWjsZ
knyYikPM6w+lWsXkWBMNtRBO/FFq42prfLOtrZi0nnpREkBqP3VS2C6e17PREEr7TguCJQLw
T2UWXEn2OPSsMIIIJzCCBw+gAwIBAgIFAwAAAAUwDQYJKoZIhv cNAQEFBQAwgZ4xCzAJBgNV
BAYTAkdSMS0wKwYDVQQKEyRBcmlzdG90bGUgVW5pdmVyc2l0eS BvZiBUaGVzc2Fsb25pa2kx
OzA5BgNVBAMTMkFyaXN0b3RsZSBVbml2ZXJzaXR5IG9mIFRoZX NzYWxvbmlraSBDZW50cmFs
IENBIFIyMSMwIQYJKoZIhvcNAQkBFhRwa2lhZG1pbkBjY2YuYX V0aC5ncjAeFw0wOTA1MjAx
MjI2MDBaFw0xMzA1MTkxMjI2MDBaMIHQMQswCQYDVQQGEwJHUj EtMCsGA1UEChMkQXJpc3Rv
dGxlIFVuaXZlcnNpdHkgb2YgVGhlc3NhbG9uaWtpMSkwJwYDVQ QLEyBDZW50cmFsIENvbW11
bmljYXRpb24gRmFjaWxpdGllczFCMEAGA1UEAxM5QVVUSCBOZX R3b3JrIE9wZXJhdGlvbnMg
Q2VudGVyIENlcnRpZmljYXRpb24gQXV0aG9yaXR5IFIzMSMwIQ YJKoZIhvcNAQkBFhRwa2lh
ZG1pbkBjY2YuYXV0aC5ncjCCASIwDQYJKoZIhvcNAQEBBQADgg EPADCCAQoCggEBANA3ZSQs
ZqfOymWVAqntzbz68zN/lQiWkjurjCDXITK/oNT0kK/OF8kuHUEYTsPRqBiJxT81o3G2J3/G
sa7DhOsusEJb5+1WAxubmo+fZ/xEgQIyAt+fKP/Oc5WcSv1hnLuoeg10wRlW4J6jobc3/1pL
L4pRXv1UlQiLbVvvb3SDcrDtAeboML7poJ5b801NNM9l+L2fux VG7NwArqkdLnQAg2Sz3haa
8dvI29yP0WDDqlF1Yg4ZCIQ03TPTNxviybRMvPzIQ6OUA/1M5AmyLEFPGgIwdlFG6Tc/jFVI
+UCLRcsefdy4GMihUTXOZxZRU1wo5RmeQ5XUgV2SuzCNEcECAw EAAaOCBDYwggQyMA8GA1Ud
EwEB/wQFMAMBAf8wCwYDVR0PBAQDAgEGMBEGCWCGSAGG+EIBAQQEAwI ABzAdBgNVHQ4EFgQU
UhdFbxbXkAqAbXl73mG+9LFPOd8wHwYDVR0RBBgwFoEUcGtpYW RtaW5AY2NmLmF1dGguZ3Iw
HwYDVR0SBBgwFoEUcGtpYWRtaW5AY2NmLmF1dGguZ3IwRwYDVR 0fBEAwPjA8oDqgOIY2aHR0
cDovL2NybHYxLnBraS5hdXRoLmdyL0F1dGhDZW50cmFsQ0FSMi 9jcmx2MS5kZXIuY3JsMCMG
CWCGSAGG+EIBBAQWFhRuc19yZXZva2VfcXVlcnkucGhwPzA3Bg lghkgBhvhCAQIEKhYoaHR0
cDovL2NybHYxLnBraS5hdXRoLmdyL0F1dGhDZW50cmFsQ0FSMj A4BglghkgBhvhCAQgEKxYp
aHR0cDovL3d3dy5wa2kuYXV0aC5nci9kb2N1bWVudHMvQ1BTLm h0bWwwgZoGCWCGSAGG+EIB
DQSBjBaBiVRoaXMgY2VydGlmaWNhdGUgaXMgc3ViamVjdCB0by BHcmVlayBsYXdzIGFuZCBv
dXIgQ1BTLiBUaGlzIENlcnRpZmljYXRlIG11c3Qgb25seSBiZS B1c2VkIGZvciBhY2FkZW1p
YywgcmVzZWFyY2ggb3IgZWR1Y2F0aW9uYWwgcHVycG9zZXMuMI HGBgNVHSMEgb4wgbuAFBhu
bO3VX3vKRIcglgXaeQ7+ay0+oYGbpIGYMIGVMQswCQYDVQQGEw JHUjFEMEIGA1UEChM7SGVs
bGVuaWMgQWNhZGVtaWMgYW5kIFJlc2VhcmNoIEluc3RpdHV0aW 9ucyBDZXJ0LiBBdXRob3Jp
dHkxQDA+BgNVBAMTN0hlbGxlbmljIEFjYWRlbWljIGFuZCBSZX NlYXJjaCBJbnN0aXR1dGlv
bnMgUm9vdENBIDIwMDaCBQEAAAARMDMGCCsGAQUFBwEBBCcwJT AjBggrBgEFBQcwAYYXaHR0
cDovL29jc3AucGtpLmF1dGguZ3IwggEgBgNVHSAEggEXMIIBEz CCAQ8GCysGAQQBvB0CAAIE
MIH/MDQGCCsGAQUFBwIBFihodHRwOi8vd3d3LnBraS5hdXRoLmdyL2 RvY3VtZW50cy9DUFMu
cGhwMIHGBggrBgEFBQcCAjCBuTArFiRBcmlzdG90bGUgVW5pdm Vyc2l0eSBvZiBUaGVzc2Fs
b25pa2kwAwIBARqBiVRoaXMgY2VydGlmaWNhdGUgaXMgc3Viam VjdCB0byBHcmVlayBsYXdz
IGFuZCBvdXIgQ1BTLiBUaGlzIENlcnRpZmljYXRlIG11c3Qgb2 5seSBiZSB1c2VkIGZvciBh
Y2FkZW1pYywgcmVzZWFyY2ggb3IgZWR1Y2F0aW9uYWwgcHVycG 9zZXMuMA0GCSqGSIb3DQEB
BQUAA4IBAQDIQPsLpSF6c45SXeARSjqvOIsGDuu6f1sGpxK0rF FjdEe8Gd4MPUXxVrfAaZgD
O2QGO9KQw4DvftE/GgOcZSFNcfIH5NqnKrSqmTrJatqHiPP/FUtqnCvM0yNBeyxdg/3rQTGT
e/dFqQ7UEg3QG4oiX5MdkFvvCYI46jFmZZC298Fm2IVHgqXEKbRK pUk3sUyV9bQZObGKfVMi
+vXsvNEbUSQhKaUaOg1hzOTp8WVguL4afMza4Y1bUZw4/7985A3tNnlw4HvEDTPVyyfroCWt
Sv/P8iTp208hZrGPuojL0AQYu8ry+eyLcOQFePi0SgGkAibdEqYQL dT1ZZhWthjCMIIIbjCC
B1agAwIBAgIFBAAAAC4wDQYJKoZIhvcNAQEFBQAwgdAxCzAJBg NVBAYTAkdSMS0wKwYDVQQK
EyRBcmlzdG90bGUgVW5pdmVyc2l0eSBvZiBUaGVzc2Fsb25pa2 kxKTAnBgNVBAsTIENlbnRy
YWwgQ29tbXVuaWNhdGlvbiBGYWNpbGl0aWVzMUIwQAYDVQQDEz lBVVRIIE5ldHdvcmsgT3Bl
cmF0aW9ucyBDZW50ZXIgQ2VydGlmaWNhdGlvbiBBdXRob3JpdH kgUjMxIzAhBgkqhkiG9w0B
CQEWFHBraWFkbWluQGNjZi5hdXRoLmdyMB4XDTA5MTExNjAwMD AwMFoXDTEwMTExNjIzNTk1
OVowgd8xCzAJBgNVBAYTAkdSMS0wKwYDVQQKEyRBcmlzdG90bG UgVW5pdmVyc2l0eSBvZiBU
aGVzc2Fsb25pa2kxIjAgBgNVBAsTGU5ldHdvcmsgT3BlcmF0aW 9ucyBDZW50ZXIxQTA/BgNV
BAsTOENsYXNzIEIgLSBQcml2YXRlIEtleSBjcmVhdGVkIGFuZC BzdG9yZWQgaW4gc29mdHdh
cmUgQ1NQMRgwFgYDVQQDEw9HZW9yZ2lvcyBQYWxsYXMxIDAeBg kqhkiG9w0BCQEWEWdwYWxs
QGNjZi5hdXRoLmdyMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQ KBgQCsvnmDQVLmXNeYqXYT
aIBcQU0e4pbX10wEeIWgw/Lx/mL6f5jAdxp7w6qImQmJTCzZbean+M0tda8AU0WRerzjnoWu
H/VWRMGMVmGuPvulYrPP/zZo7KbPs73KrK9h/P/+Vr31dv3DWHMs/+Z89lIdsIECmJgNfOX8
ZbVb1EX+lQIDAQABo4IEwDCCBLwwDAYDVR0TAQH/BAIwADARBglghkgBhvhCAQEEBAMCBaAw
DgYDVR0PAQH/BAQDAgXgMEkGA1UdJQRCMEAGCCsGAQUFBwMCBggrBgEFBQcDBA YKKwYBBAGC
NwoDBAYIKwYBBQUHAwMGCCsGAQUFBwMIBgorBgEEAYI3FAICMC kGCSsGAQQBgjcUAgQcHhoA
UwBtAGEAcgB0AGMAYQByAGQAVQBzAGUAcjAdBgNVHQ4EFgQU08 dF6BfjRrCUXm2LPmWlo0lF
UEMwgc8GA1UdIwSBxzCBxIAUUhdFbxbXkAqAbXl73mG+9LFPOd +hgaSkgaEwgZ4xCzAJBgNV
BAYTAkdSMS0wKwYDVQQKEyRBcmlzdG90bGUgVW5pdmVyc2l0eS BvZiBUaGVzc2Fsb25pa2kx
OzA5BgNVBAMTMkFyaXN0b3RsZSBVbml2ZXJzaXR5IG9mIFRoZX NzYWxvbmlraSBDZW50cmFs
IENBIFIyMSMwIQYJKoZIhvcNAQkBFhRwa2lhZG1pbkBjY2YuYX V0aC5ncoIFAwAAAAUwHwYD
VR0SBBgwFoEUcGtpYWRtaW5AY2NmLmF1dGguZ3IwMwYIKwYBBQ UHAQEEJzAlMCMGCCsGAQUF
BzABhhdodHRwOi8vb2NzcC5wa2kuYXV0aC5ncjBDBgNVHR8EPD A6MDigNqA0hjJodHRwOi8v
Y3JsdjEucGtpLmF1dGguZ3IvQXV0aE5vY0NBUjMvY3JsdjEuZG VyLmNybDCBmgYJYIZIAYb4
QgENBIGMFoGJVGhpcyBjZXJ0aWZpY2F0ZSBpcyBzdWJqZWN0IH RvIEdyZWVrIGxhd3MgYW5k
IG91ciBDUFMuIFRoaXMgQ2VydGlmaWNhdGUgbXVzdCBvbmx5IG JlIHVzZWQgZm9yIGFjYWRl
bWljLCByZXNlYXJjaCBvciBlZHVjYXRpb25hbCBwdXJwb3Nlcy 4wMwYJYIZIAYb4QgECBCYW
JGh0dHA6Ly9jcmx2MS5wa2kuYXV0aC5nci9BdXRoTm9jQ0FSMz AjBglghkgBhvhCAQQEFhYU
bnNfcmV2b2tlX3F1ZXJ5LnBocD8wNwYJYIZIAYb4QgEIBCoWKG h0dHA6Ly93d3cucGtpLmF1
dGguZ3IvZG9jdW1lbnRzL0NQUy5waHAwggEgBgNVHSAEggEXMI IBEzCCAQ8GCysGAQQBvB0C
AAIEMIH/MDQGCCsGAQUFBwIBFihodHRwOi8vd3d3LnBraS5hdXRoLmdyL2 RvY3VtZW50cy9D
UFMucGhwMIHGBggrBgEFBQcCAjCBuTArFiRBcmlzdG90bGUgVW 5pdmVyc2l0eSBvZiBUaGVz
c2Fsb25pa2kwAwIBARqBiVRoaXMgY2VydGlmaWNhdGUgaXMgc3 ViamVjdCB0byBHcmVlayBs
YXdzIGFuZCBvdXIgQ1BTLiBUaGlzIENlcnRpZmljYXRlIG11c3 Qgb25seSBiZSB1c2VkIGZv
ciBhY2FkZW1pYywgcmVzZWFyY2ggb3IgZWR1Y2F0aW9uYWwgcH VycG9zZXMuMDMGA1UdEQQs
MCqgKAYKKwYBBAGCNxQCA6AaDBhncGFsbEBwY2xhYnMuaXRjLm F1dGguZ3IwDQYJKoZIhvcN
AQEFBQADggEBAG5IT1DgdhKGY7JeGLdjKpnIvMrXfdZTTbKP2C ry3hOE5CEmmhuVWJ1nk9V2
5H9gW3+1nyvRW1ZKz/Av/pbWsPRLfWq8Wg7JCk0RSsS+y0M8lya/XkKDaENLiZE3CxfLZLKj
CkY7F8QBnzpznI0brx0r6SFVx6xGJsVLTsrncv97kKRrxkjYWE aYj2dXZX3PFuAHouWOMUG6
YswoCkbEIArqc6e0eyyCXwcjDj7fXeyhyiX8St7kzJLxzOdp8W RzGu4+8B23Wud2XbyRaFrq
8v7Gyskic4eTSKEmGAdVtLDfwHt/rXpgNEh3uNpx6ipWLl0CM2NlCiC0Zxz4ep+zSU0wgghu
MIIHVqADAgECAgUEAAAALjANBgkqhkiG9w0BAQUFADCB0DELMA kGA1UEBhMCR1IxLTArBgNV
BAoTJEFyaXN0b3RsZSBVbml2ZXJzaXR5IG9mIFRoZXNzYWxvbm lraTEpMCcGA1UECxMgQ2Vu
dHJhbCBDb21tdW5pY2F0aW9uIEZhY2lsaXRpZXMxQjBABgNVBA MTOUFVVEggTmV0d29yayBP
cGVyYXRpb25zIENlbnRlciBDZXJ0aWZpY2F0aW9uIEF1dGhvcm l0eSBSMzEjMCEGCSqGSIb3
DQEJARYUcGtpYWRtaW5AY2NmLmF1dGguZ3IwHhcNMDkxMTE2MD AwMDAwWhcNMTAxMTE2MjM1
OTU5WjCB3zELMAkGA1UEBhMCR1IxLTArBgNVBAoTJEFyaXN0b3 RsZSBVbml2ZXJzaXR5IG9m
IFRoZXNzYWxvbmlraTEiMCAGA1UECxMZTmV0d29yayBPcGVyYX Rpb25zIENlbnRlcjFBMD8G
A1UECxM4Q2xhc3MgQiAtIFByaXZhdGUgS2V5IGNyZWF0ZWQgYW 5kIHN0b3JlZCBpbiBzb2Z0
d2FyZSBDU1AxGDAWBgNVBAMTD0dlb3JnaW9zIFBhbGxhczEgMB 4GCSqGSIb3DQEJARYRZ3Bh
bGxAY2NmLmF1dGguZ3IwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMI GJAoGBAKy+eYNBUuZc15ip
dhNogFxBTR7iltfXTAR4haDD8vH+Yvp/mMB3GnvDqoiZCYlMLNlt5qf4zS11rwBTRZF6vOOe
ha4f9VZEwYxWYa4++6Vis8//Nmjsps+zvcqsr2H8//5WvfV2/cNYcyz/5nz2Uh2wgQKYmA18
5fxltVvURf6VAgMBAAGjggTAMIIEvDAMBgNVHRMBAf8EAjAAMB EGCWCGSAGG+EIBAQQEAwIF
oDAOBgNVHQ8BAf8EBAMCBeAwSQYDVR0lBEIwQAYIKwYBBQUHAw IGCCsGAQUFBwMEBgorBgEE
AYI3CgMEBggrBgEFBQcDAwYIKwYBBQUHAwgGCisGAQQBgjcUAg IwKQYJKwYBBAGCNxQCBBwe
GgBTAG0AYQByAHQAYwBhAHIAZABVAHMAZQByMB0GA1UdDgQWBB TTx0XoF+NGsJRebYs+ZaWj
SUVQQzCBzwYDVR0jBIHHMIHEgBRSF0VvFteQCoBteXveYb70sU 8536GBpKSBoTCBnjELMAkG
A1UEBhMCR1IxLTArBgNVBAoTJEFyaXN0b3RsZSBVbml2ZXJzaX R5IG9mIFRoZXNzYWxvbmlr
aTE7MDkGA1UEAxMyQXJpc3RvdGxlIFVuaXZlcnNpdHkgb2YgVG hlc3NhbG9uaWtpIENlbnRy
YWwgQ0EgUjIxIzAhBgkqhkiG9w0BCQEWFHBraWFkbWluQGNjZi 5hdXRoLmdyggUDAAAABTAf
BgNVHRIEGDAWgRRwa2lhZG1pbkBjY2YuYXV0aC5ncjAzBggrBg EFBQcBAQQnMCUwIwYIKwYB
BQUHMAGGF2h0dHA6Ly9vY3NwLnBraS5hdXRoLmdyMEMGA1UdHw Q8MDowOKA2oDSGMmh0dHA6
Ly9jcmx2MS5wa2kuYXV0aC5nci9BdXRoTm9jQ0FSMy9jcmx2MS 5kZXIuY3JsMIGaBglghkgB
hvhCAQ0EgYwWgYlUaGlzIGNlcnRpZmljYXRlIGlzIHN1YmplY3 QgdG8gR3JlZWsgbGF3cyBh
bmQgb3VyIENQUy4gVGhpcyBDZXJ0aWZpY2F0ZSBtdXN0IG9ubH kgYmUgdXNlZCBmb3IgYWNh
ZGVtaWMsIHJlc2VhcmNoIG9yIGVkdWNhdGlvbmFsIHB1cnBvc2 VzLjAzBglghkgBhvhCAQIE
JhYkaHR0cDovL2NybHYxLnBraS5hdXRoLmdyL0F1dGhOb2NDQV IzMCMGCWCGSAGG+EIBBAQW
FhRuc19yZXZva2VfcXVlcnkucGhwPzA3BglghkgBhvhCAQgEKh YoaHR0cDovL3d3dy5wa2ku
YXV0aC5nci9kb2N1bWVudHMvQ1BTLnBocDCCASAGA1UdIASCAR cwggETMIIBDwYLKwYBBAG8
HQIAAgQwgf8wNAYIKwYBBQUHAgEWKGh0dHA6Ly93d3cucGtpLm F1dGguZ3IvZG9jdW1lbnRz
L0NQUy5waHAwgcYGCCsGAQUFBwICMIG5MCsWJEFyaXN0b3RsZS BVbml2ZXJzaXR5IG9mIFRo
ZXNzYWxvbmlraTADAgEBGoGJVGhpcyBjZXJ0aWZpY2F0ZSBpcy BzdWJqZWN0IHRvIEdyZWVr
IGxhd3MgYW5kIG91ciBDUFMuIFRoaXMgQ2VydGlmaWNhdGUgbX VzdCBvbmx5IGJlIHVzZWQg
Zm9yIGFjYWRlbWljLCByZXNlYXJjaCBvciBlZHVjYXRpb25hbC BwdXJwb3Nlcy4wMwYDVR0R
BCwwKqAoBgorBgEEAYI3FAIDoBoMGGdwYWxsQHBjbGFicy5pdG MuYXV0aC5ncjANBgkqhkiG
9w0BAQUFAAOCAQEAbkhPUOB2EoZjsl4Yt2Mqmci8ytd91lNNso/YKvLeE4TkISaaG5VYnWeT
1Xbkf2Bbf7WfK9FbVkrP8C/+ltaw9Et9arxaDskKTRFKxL7LQzyXJr9eQoNoQ0uJkTcLF8tk
sqMKRjsXxAGfOnOcjRuvHSvpIVXHrEYmxUtOyudy/3uQpGvGSNhYRpiPZ1dlfc8W4Aei5Y4x
QbpizCgKRsQgCupzp7R7LIJfByMOPt9d7KHKJfxK3uTMkvHM52 nxZHMa7j7wHbda53ZdvJFo
Wury/sbKySJzh5NIoSYYB1W0sN/Ae3+temA0SHe42nHqKlYuXQIzY2UKILRnHPh6n7NJTTGC
BCEwggQdAgEBMIHaMIHQMQswCQYDVQQGEwJHUjEtMCsGA1UECh MkQXJpc3RvdGxlIFVuaXZl
cnNpdHkgb2YgVGhlc3NhbG9uaWtpMSkwJwYDVQQLEyBDZW50cm FsIENvbW11bmljYXRpb24g
RmFjaWxpdGllczFCMEAGA1UEAxM5QVVUSCBOZXR3b3JrIE9wZX JhdGlvbnMgQ2VudGVyIENl
cnRpZmljYXRpb24gQXV0aG9yaXR5IFIzMSMwIQYJKoZIhvcNAQ kBFhRwa2lhZG1pbkBjY2Yu
YXV0aC5ncgIFBAAAAC4wCQYFKw4DAhoFAKCCApwwGAYJKoZIhv cNAQkDMQsGCSqGSIb3DQEH
ATAcBgkqhkiG9w0BCQUxDxcNMTAwNTIzMDg1MDMwWjAjBgkqhk iG9w0BCQQxFgQU73s5pifA
AHxCxi9foJFMJeNQkOYwXwYJKoZIhvcNAQkPMVIwUDALBglghk gBZQMEAQIwCgYIKoZIhvcN
AwcwDgYIKoZIhvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAcGBS sOAwIHMA0GCCqGSIb3DQMC
AgEoMIHrBgkrBgEEAYI3EAQxgd0wgdowgdAxCzAJBgNVBAYTAk dSMS0wKwYDVQQKEyRBcmlz
dG90bGUgVW5pdmVyc2l0eSBvZiBUaGVzc2Fsb25pa2kxKTAnBg NVBAsTIENlbnRyYWwgQ29t
bXVuaWNhdGlvbiBGYWNpbGl0aWVzMUIwQAYDVQQDEzlBVVRIIE 5ldHdvcmsgT3BlcmF0aW9u
cyBDZW50ZXIgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkgUjMxIz AhBgkqhkiG9w0BCQEWFHBr
aWFkbWluQGNjZi5hdXRoLmdyAgUEAAAALjCB7QYLKoZIhvcNAQ kQAgsxgd2ggdowgdAxCzAJ
BgNVBAYTAkdSMS0wKwYDVQQKEyRBcmlzdG90bGUgVW5pdmVyc2 l0eSBvZiBUaGVzc2Fsb25p
a2kxKTAnBgNVBAsTIENlbnRyYWwgQ29tbXVuaWNhdGlvbiBGYW NpbGl0aWVzMUIwQAYDVQQD
EzlBVVRIIE5ldHdvcmsgT3BlcmF0aW9ucyBDZW50ZXIgQ2VydG lmaWNhdGlvbiBBdXRob3Jp
dHkgUjMxIzAhBgkqhkiG9w0BCQEWFHBraWFkbWluQGNjZi5hdX RoLmdyAgUEAAAALjANBgkq
hkiG9w0BAQEFAASBgG3odWmlceNAb6VxWxKH5gh3pUeokitQkm gYa8eOT3xCoN40aZ5SadJz
9EBZyA32H6hR5x3ujCoq/0oFnnI4IP6wNnE4NwbJ9IN4jX4nmdHt58QSFvF5xWQjv5ppa1z 3
otMbVYDXy1IZDrcTT9pLL6iRF+NC8btBBazDYJiyKvGGAAAAAA AA
--------------ms010501010305060706080405--


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Archive: http://lists.debian.org/4BF8EC56.7040706@ccf.auth.gr

Dne, 23. 05. 2010 10:45:36 je Ron Johnson napisal(a):


Why?



I frequently burn double-layer DVDs, requiring around 8GB of free space
for temporary files. Until now, I had to do that on another rig. Also,
I'm planning to do some video editing, which, I'm told, likewise
requires huge amounts of temporary space. On my / partition, I have
nowhere *near* that amount of free space.


--
Regards,

Klistvud
Certifiable Loonix User #481801
http://bufferoverflow.tiddlyspot.com


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: 1274605819.6845.2@compax">http://lists.debian.org/1274605819.6845.2@compax

On Sun, May 23, 2010 at 11:10:19AM +0200, Klistvud wrote:
> Dne, 23. 05. 2010 10:45:36 je Ron Johnson napisal(a):
> > Why?
> I frequently burn double-layer DVDs, requiring around 8GB of free space
> for temporary files. Until now, I had to do that on another rig. Also,
> I'm planning to do some video editing, which, I'm told, likewise
> requires huge amounts of temporary space. On my / partition, I have
> nowhere *near* that amount of free space.

IMHO, it is a good idea to implement LVM when possible.
In case you go on, I recently went through an actual BTDT situation:

Having /tmp mounted noexec,nosuid for security reasons, aptitude
failed to execute postinstall scripts.
The solution was to remount exec /tmp partition and rerun aptitude.
After that I had to add this to /etc/apt/apt.conf or under
/etc/apt/apt.conf.d/ (depends on your config)

DPkg::Pre-Invoke{"mount -o remount,exec /tmp";};
DPkg::Post-Invoke {"mount -o remount /tmp";};

Some useful references:

http://www.debian-administration.org/articles/57
http://forums.debian.net/viewtopic.php?t=16450

Regards.

--
Huella de clave primaria: 0FDA C36F F110 54F4 D42B D0EB 617D 396C 448B 31EB

On 05/23/2010 07:22 AM, Chris Bannister wrote:

On Sun, May 23, 2010 at 11:10:19AM +0200, Klistvud wrote:

Dne, 23. 05. 2010 10:45:36 je Ron Johnson napisal(a):


Why?



I frequently burn double-layer DVDs, requiring around 8GB of free
space for temporary files. Until now, I had to do that on another
rig. Also, I'm planning to do some video editing, which, I'm told,
likewise requires huge amounts of temporary space. On my /
partition, I have nowhere *near* that amount of free space.


Maybe there is an option in the config file of the application which you
use to burn DVDs that allows you to set the tmp dir?



Exactly. Either via $TMP, $TMPDIR, a command-line option or
app-specific variable.


--
Dissent is patriotic, remember?


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Archive: 4BF90F4F.1060603@cox.net">http://lists.debian.org/4BF90F4F.1060603@cox.net

On Sun, May 23, 2010 at 11:10:19AM +0200, Klistvud wrote:
> Dne, 23. 05. 2010 10:45:36 je Ron Johnson napisal(a):
> >
> >Why?
> >
>
> I frequently burn double-layer DVDs, requiring around 8GB of free
> space for temporary files. Until now, I had to do that on another
> rig. Also, I'm planning to do some video editing, which, I'm told,
> likewise requires huge amounts of temporary space. On my /
> partition, I have nowhere *near* that amount of free space.

Maybe there is an option in the config file of the application which you
use to burn DVDs that allows you to set the tmp dir?

--
"Religion is excellent stuff for keeping common people quiet."
-- Napoleon Bonaparte


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: 20100523122239.GC18258@fischer">http://lists.debian.org/20100523122239.GC18258@fischer

On Sunday 23 May 2010 04:37:18 Klistvud wrote:
> Howdy, fellow Debianites!
> Given some extra hard drive space, I decided to move my /tmp dir
> (currently located under / ) to a partition of its own. I am looking
> forward to any advice, particularly of the been-there-done-that type:
> * how should I configure my fstab entry? How does Debian installer do
> it?

Watch out for permissions -- /tmp is "1777" (rwxrwxrwt), it has to
be world-writable and have the sticky bit set, which ensures that only
users who create files in there can write to them. Permissions come
from the mounted FS, not the mount point, so make sure you set these
permissions while it's mounted.

Because of the world-writability, security conscious admins mount
it nodev and nosuid. If you're more careful, you can mount it noexec,
too, but that will break some third-party software installers that
work by examining your system, writing a custom config script inside
/tmp somewhere, and then running it.

So your fstab entry might look like:

> /dev/with/temp/ /tmp ext3 nosuid,nodev 0 2


> * is there anything Debian-specific to watch for?

Not that I recall.

> * is it true that setting /tmp permissions to non-executable, while
> hardening your box, prevents apt from working properly?

Setting /tmp to non-executable by the noexec mount option does break
things, but as I said above, my recollection is that it mostly breaks
third-party stuff. I think the apt scripts are all in /var/lib/dkpg/info,
and are run from there.
Setting the *directory* noexec seems very bad, since the exec bit
on directories controls the ability to cd to it, and turning that
off would make it largely useless.

As to "why", on moderately-high-availability multi-user systems, I
often put /tmp on a separate partition precisely so I can use mount
options to globally control access. This is more important in a
truly multi-user system than a home system, of course.

Misbehaving apps rarely but sometimes blow the lid off of /tmp, and
having it be on its own partition means this doesn't compromise the
system as a whole, and you can easily figure out what's going on by
seeing the logged errors and looking at "df" output. Some folks keep
/var/log on a separate partition for similar reasons.

Again, all of this is more important in a multi-user production
environment. On my home systems, I mostly don't worry about this
sort of thing.

-- A.
--
Andrew Reid / reidac@bellatlantic.net


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: 201005231038.48482.reidac@bellatlantic.net">http://lists.debian.org/201005231038.48482.reidac@bellatlantic.net

On Sun, May 23, 2010 at 10:37:18AM +0200, Klistvud wrote:
> Howdy, fellow Debianites!
> Given some extra hard drive space, I decided to move my /tmp dir
> (currently located under / ) to a partition of its own. I am looking
> forward to any advice, particularly of the been-there-done-that type:
> * how should I configure my fstab entry? How does Debian installer do
> it?
> * is there anything Debian-specific to watch for?
> * is it true that setting /tmp permissions to non-executable, while
> hardening your box, prevents apt from working properly?
>
Don't forget that the permissions on /tmp are:

rwxrwxrwt

If /tmp is its own partition, you might consider using ext2 for speed.
You could also consider RAID 0, if you have mulitple drives.

-Rob


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: 20100523150009.GC23289@aurora.owens.net">http://lists.debian.org/20100523150009.GC23289@aurora.owens.net

Thanx for your exhaustive answer, it's an enlightening read. The point
that appears particularly interesting to me personally is:



Permissions come
from the mounted FS, not the mount point, so make sure you set these
permissions while it's mounted.



It's always good to learn something new.

--
Regards,

Klistvud
Certifiable Loonix User #481801
http://bufferoverflow.tiddlyspot.com


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: 1274634775.6845.3@compax">http://lists.debian.org/1274634775.6845.3@compax

Dne, 23. 05. 2010 17:00:09 je Rob Owens napisal(a):


If /tmp is its own partition, you might consider using ext2 for speed.
You could also consider RAID 0, if you have mulitple drives.


A good suggestion, thanx. What about ext4, is it slower or faster than
ext2?


--
Regards,

Klistvud
Certifiable Loonix User #481801
http://bufferoverflow.tiddlyspot.com


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: 1274634861.6845.4@compax">http://lists.debian.org/1274634861.6845.4@compax