OpenVZ Forum


Home » General » Support » ploop and secure /tmp
ploop and secure /tmp [message #51387] Sun, 04 May 2014 15:13 Go to next message
ccto is currently offline  ccto
Messages: 40
Registered: October 2005
Member
From: 180.92.180*
Hello Everyone,

In CentOS 6 x64 ploop environment, may you please suggest how to mount the /tmp securely? (i.e. nodev, nosuid, noexec)

Thank you very much for your kind advice.

Regards
George
Re: ploop and secure /tmp [message #51401 is a reply to message #51387] Wed, 07 May 2014 10:50 Go to previous messageGo to next message
Abadon is currently offline  Abadon
Messages: 4
Registered: August 2013
Location: Cyber Space
Junior Member

From: *home.megalan.bg
Hi,

I mount my ext4 /vz partition for ploop containers with below options:
tune2fs -o journal_data_writeback /dev/sdXY
Where /dev/sdXY is replaced by the partition that you actually use

Then in /etc/fstab i put

noatime,data=writeback,barrier=0,nobh,errors=remount-ro        0 1


for host /tmp I don't use separate partition.
Re: ploop and secure /tmp [message #51473 is a reply to message #51387] Sat, 21 June 2014 14:49 Go to previous messageGo to next message
devonblzx is currently offline  devonblzx
Messages: 127
Registered: December 2006
Senior Member
From: 162.220.216*
It isn't any different than simfs. Use tmpfs or bind.

http://static.openvz.org/userbars/openvz-user-2.png
ByteOnSite President
Re: ploop and secure /tmp [message #51474 is a reply to message #51387] Sat, 21 June 2014 14:51 Go to previous message
ccto is currently offline  ccto
Messages: 40
Registered: October 2005
Member
From: 180.92.180*
Yes, I found we can continue to mount simfs into /vz/root/VEID/tmp

thank you.
Previous Topic: Speed up ploop conversion
Next Topic: How to create multiple venet interfaces on HN?
Goto Forum:
  


Current Time: Sun Nov 19 10:10:27 GMT 2017