فهرست منبع

reworded

git-svn-id: http://svn.linuxfromscratch.org/LFS/trunk/BOOK@2179 4aa44e1e-78dd-0310-a6d2-fbcd4c07a689
Gerard Beekmans 23 سال پیش
والد
کامیت
d066924831
1فایلهای تغییر یافته به همراه21 افزوده شده و 10 حذف شده
  1. 21 10
      chapter06/changingowner.xml

+ 21 - 10
chapter06/changingowner.xml

@@ -2,20 +2,31 @@
 <title>Changing ownership</title>
 <?dbhtml filename="changingowner.html" dir="chapter06"?>
 
-<para>The first thing we'll do, now that we're <emphasis>root</emphasis>,
-is change the ownership of the files and directories installed in Chapter 5
-to root -- because when later we don't delete the
-<filename class="directory">/static</filename> directory and start adding
-new users, one of these users might end up owning the statically linked
-programs, which is not a good idea.</para>
+<para>Right now the /static directory is owned by the lfs user. However,
+this user account exists only on the host system. Although you may delete
+the <filename class="directory">/static</filename> directory once you have
+finished your LFS system, you might want to keep it around, e.g. for
+building more LFS systems. But if you keep the
+<filename class="directory">/static</filename> directory you will end up
+with files owned by a user id without a corresponding account. This is
+dangerous because a user account created later could get this user id and
+would suddenly own the <filename class="directory">/static</filename>
+directory and all of the files therein. This could open the
+<filename class="directory">/static</filename> directory to manipulation by
+an untrusted user.</para>
 
-<para>Run the following command to make root the owner of all the statically
-linked programs:</para>
+<para>To avoid this issue, you can add the
+<emphasis>lfs</emphasis> user to the new LFS system later when creating
+the <filename>/etc/passwd</filename> file, taking care to assign it the
+same user and group id. Alternatively, you can (and the book will assume
+you do) run the following command now, to assign the contents of the
+<filename class="directory">/static</filename> directory to user
+<emphasis>root</emphasis> by running the following command:</para>
 
 <para><screen><userinput>chown -R 0:0 /static</userinput></screen></para>
 
-<para>The command uses "0:0" instead of "root:root", because there is no way
-to resolve the name "root", as glibc hasn't been installed yet.</para>
+<para>The command uses "0:0" instead of "root:root", because chown is unable
+to resolve the name "root" until glibc has been installed.</para>
 
 </sect1>