changingowner.xml 1.7 KB

1234567891011121314151617181920212223242526272829303132333435363738394041
  1. <?xml version="1.0" encoding="ISO-8859-1"?>
  2. <!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
  3. "http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
  4. <!ENTITY % general-entities SYSTEM "../general.ent">
  5. %general-entities;
  6. ]>
  7. <sect1 id="ch-tools-changingowner">
  8. <?dbhtml filename="changingowner.html"?>
  9. <title>Changing Ownership</title>
  10. <note>
  11. <para>The commands in the remainder of this book must be performed while
  12. logged in as user <systemitem class="username">root</systemitem> and no
  13. longer as user <systemitem class="username">lfs</systemitem>. Also, double
  14. check that <envar>$LFS</envar> is set in <systemitem
  15. class="username">root</systemitem>'s environment.</para>
  16. </note>
  17. <para>Currently, the whole directory hierarchy in <filename
  18. class="directory">$LFS</filename>
  19. is owned by the user <systemitem class="username">lfs</systemitem>, a user
  20. that exists only on the host system. If the directories and files under <filename
  21. class="directory">$LFS</filename> are kept as they are, they will be
  22. owned by a user ID without a corresponding account. This is dangerous because
  23. a user account created later could get this same user ID and would own all
  24. the files under <filename class="directory">$LFS</filename>, thus exposing
  25. these files to possible malicious manipulation.</para>
  26. <para>To address this issue, change the
  27. ownership of the <filename class="directory">$LFS/*</filename> directories to
  28. user <systemitem class="username">root</systemitem> by running the following
  29. command:</para>
  30. <screen><userinput>chown -R root:root $LFS/{usr,lib,var,etc,bin,sbin,tools}
  31. case $(uname -m) in
  32. x86_64) chown -R root:root $LFS/lib64 ;;
  33. esac</userinput></screen>
  34. </sect1>