|
Comradephate posted:rm -rf * won't do anything on a modern system. In a previous job, one of the regular maintenance tasks was manually deleting old deleted email from the email servers. You had to go into the directory and do 'rm -rf *' to clear it out and make space when the servers started to get full. the path was something like /taurus/home/users/trash. I accidently did this from one directory above, when I had already been up all night on call. Luckily my genius boss used DRBD to mirror the servers, and figured out how to restore the data from the shadow copy/cache, but it still took more than a day to restore. I was told the method for doing this maintenance, but was told after the fact there was also a script I could run. This was even on CentOS, but not with SELinux features turned on. I had a similar slip-up doing manual SQL database updates in MySQL something like 'update users=suspended where a equals'. Basically I didn't complete the statement and accidently hit enter, so it affected a poo poo-ton of users and froze up the MySQL server for a while. This was when I thought maybe I had ADHD... (and I did.) rocket fucked around with this message at 20:41 on Jul 28, 2014 |
# ¿ Jul 28, 2014 20:33 |
|
|
# ¿ Apr 29, 2024 21:25 |
|
Ok, I guess SELinux is mostly for protecting system memory from malicious programs.
|
# ¿ Jul 28, 2014 20:56 |
|
evol262 posted:SELinux is does a lot more than that, but it's way beyond the scope of this discussion. It doesn't protect you from yourself, though (it can, but not in default config, and Linux facls can also protect the system from root doing this, but also beyond the scope). It's just nice to know that it can be done. Thanks!
|
# ¿ Jul 28, 2014 21:13 |