>Why does every Linux distro under the sun try so hard to protect the garbage under /usr...

TZubiri • today at 10:48 AM • 2 replies • view on HN

>Why does every Linux distro under the sun try so hard to protect the garbage under /usr/bin/ and /etc

Because a compromised user could infect shared executables and spread the infection. A bit harder to do with etc but for sure possible. The main target would be infecting bash and you are done from the get go.

>when literally the only files that matter to me are in /home, which is a free-for-all?

The home folder's read write is usually restricted to the user. The only scenario where this isn't the case to my knowledge is Ubuntu where others can read it, but this is just a huge flaw in Ubuntu that almost no other distro has.

Replies

oblio • today at 11:39 AM

> when literally the only files that matter to me are in /home, which is a free-for-all?

> The home folder's read write is usually restricted to the user.

Yeah, and that is the point. All user's programs including curl, wget, the web browser, anything else that connects to the network run as the user, and all the user's programs, by default, have access to everything inside ${HOME}.

Most people don't really care if /bin gets obliterated, but they do care dearly when /home/joe/photos/annies-2nd-birthday gets wiped.

➕ show 3 replies

alt Hacker News

Replies