OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Re: { OT } Incorrect logging of SMTP messages
From: Wietse Venema (wietseporcupine.org)
Date: Sun Oct 01 2000 - 09:12:45 CDT

FYI, the Postfix start-up procedure, a shell script that normally
lives in /etc/postfix/postfix-script, is kept in the configuration
directory so that sites can customize it to local needs, rather
than in /usr/whatever which is supposed to be read/execute only.

I have been using UNIX for only 15 years now, and each system is
a little different in how it organizes its files. At one point in
time (1978), all system adminstrative commands were found in /etc,
along with their configuration files. In the early 1980s, even
network daemons executable files were kept in /etc.

So, location of files is not only a matter of sanity.

        Wietse

Christopher Sawtell:
> On Sun, 01 Oct 2000, you wrote:
> > On Sat, Sep 30, 2000 at 10:20:23AM +0300, Liviu Daia wrote:
> > > Out of curiosity, why is it "insane" to keep init scripts in
> > > /sbin/init.d ?
> >
> > Because they are more or less config files.
>
> Indeed, but they _are_ executable scripts.
>
> > Expected to be modified
> > by the sysadmin. I assume to get the machine configuration backed
> > up when backing up /etc.
> >
> > BTW... /etc/init.d is the recommended place by the Linux Standard Base,
> > (http://www.linuxbase.org/spec/spec/x8104.html) where SuSE is a
> > member of. But it seems they don't care - doh.
>
> OTOH if you put init scripts, which are executable, in /sbin/init.d it then
> becomes possible in principle anyway to mount /etc as a non-executable
> partitiion. This enhances the security of the overall system just that little
> bit, and every little bit helps.
>
> This is one of the very few SuSE enhancements with which I can see reasonable
> cause & I have some sympathy.
>
> The rest of it could imho be put together somewhat better and seems to be an
> exception to the national trait of care and throughness for which Germany is
> renowned. It is obvious that the intent is to provide a trouble free
> installation of Linux as a workstation for the new and inexperienced user. At
> this SuSE does it pretty well. However when it comes to more complex
> things like the setting up of servers etc. then it can't be done without local
> skill and knowledge, SuSE - and the rest of the tribe - are kidding themselves
> if they think they can do that automatically, and are being somewhat fancyful
> even trying.
>
> What I want from a Linux dist. is for it to be secure by default from the start,
> freedom from installation and configuration "tools" doing things behind my
> back which erode my level of control over my computer. Finally I want full
> control over what gets installed on my machine.
>
> Lastly, and I fear a folorn hope, I want correct, complete and properly written
> documentation. Postfix folks please note bene.
>
> --
>
> Sincerely etc.,
>
> NAME Christopher Sawtell
> CELL PHONE 021 257 4451
> ICQ UIN 45863470
> EMAIL csawtell xtra . co . nz
> CNOTES ftp://ftp.funet.fi/pub/languages/C/tutorials/sawtell_C.tar.gz
>
> -->> Please refrain from using HTML or WORD attachments in e-mails to me <<--
>
>
>
>