I've been wondering why it we still have /bin and /usr/bin kept separate?
Likewise /lib separate from /usr/lib and /sbin separate from /usr/sbin.
It seems like a legacy thing to me when the intent was to have a small set
of tools that could maintain the system in single user mode before /usr is
mounted.  But with huge disk capacities of today, is that even needed?
There's plenty of space for a separate partition with a duplicate system.
And CDROMs can hold a complete rescue systems that surpass the capabilities
of an entire installed system of just a decade ago.  I no longer use single
user mode for anything and so I can't see any need for structuring things
specifically to make single user mode workable.  Do we really need single
user mode for newer systems, as opposed to a complete, and totally separate,
maintenance system (either on another partition or separate media)?

--
----------------------------------------------------------------------------
-
| Phil Howard KA9WGN       | http://linuxhomepage.com/      http://ham.org/ 
|
| (first name) at ipal.net | http://phil.ipal.org/   http://ka9wgn.ham.org/ 
|
----------------------------------------------------------------------------
-

[ Post a follow-up to this message ]

The sbin directory are commands that are available only in single user
mode the /bin directory is multi-user mode.

[ Post a follow-up to this message ]

phil-news-nospam@ipal.net wrote:
>
> I've been wondering why it we still have /bin and /usr/bin kept separate?
> Likewise /lib separate from /usr/lib and /sbin separate from /usr/sbin.
> It seems like a legacy thing to me when the intent was to have a small set
> of tools that could maintain the system in single user mode before /usr is
> mounted.  But with huge disk capacities of today, is that even needed?

Solaris has been known to replace /bin and /lib with symbolic links,
so it is easy to view the difference as legacy.  The strict need for
separation is in the past.  There's more to life than needs based on
old hardware types.

> There's plenty of space for a separate partition with a duplicate system.
> And CDROMs can hold a complete rescue systems that surpass the capabilitie
s
> of an entire installed system of just a decade ago.  I no longer use singl
e
> user mode for anything and so I can't see any need for structuring things
> specifically to make single user mode workable.

Ah, now there's where your bias comes in.

> Do we really need single
> user mode for newer systems, as opposed to a complete, and totally separat
e,
> maintenance system (either on another partition or separate media)?

A small booting system exists.  Whether it's only used for stuff like
jumpstart/kickstart/ignite.  It makes little sense for a separate
system
to be used when a pared-down version can be used.  Of course, the
only time that's needed in any strict sense is boot time.

There's more than "need", though.  There can be other advantages.  I
like to side-step the actual history of the name of /usr and teach
that it has newer meaning.  USR for Unix System Reserved or even
better Unix System Readonly.  There is plenty of use to having the
filesystem that contains the bulk of the installation to be read-only.
Whether that means logically RO from strict permissions, virtually
RO from being mounted RO except to do installs, or physically RO
once installation is finished isn't as relevant as the idea that it can
be treated as read-only.

Someday over the rainbow, viruses will attack UNIX.  At that time
the more systems that have the more layers of protection the better.
Isolating the least changing parts of the installation, and the most
crucial parts of the installation and making them RO is yet another
layer of defense in depth.  The stricter the level or RO-ness the
less suseptible to attack.

Whether there's a separate / and /usr isn't a big deal to me.  Making
/usr as locked down as feasible is.  Try going to the extreme of
making / and /usr together and to making it RO in hardware and
see what happens - /etc is a problem.  Files in /etc need to change
with some frequency.  Separate /  and /usr works.  Having /etc as a
separate mount doesn't because of assumptions built into the
system.  How to find /etc/vfstab or /etc/filesystems>

[ Post a follow-up to this message ]

On 12 Dec 2005 11:41:45 -0800, patlav@gmail.com <patlav@gmail.com> wrote:
> The sbin directory are commands that are available only in single user
> mode

Since when?

> the /bin directory is multi-user mode.

How sure are you of that?

[ Post a follow-up to this message ]

"Doug Freyburger" <dfreybur@yahoo.com> writes:

>phil-news-nospam@ipal.net wrote: 
[vbcol=seagreen]
>Solaris has been known to replace /bin and /lib with symbolic links,
>so it is easy to view the difference as legacy.  The strict need for
>separation is in the past.  There's more to life than needs based on
>old hardware types.

We still support a separate / & /usr in Solaris though; and in Solaris 10
/lib is no longer a symbolic link but it's the directory with all shared
libraries needed for initial bootstrap (i.e., a lot of them)

>Whether there's a separate / and /usr isn't a big deal to me.  Making
>/usr as locked down as feasible is.  Try going to the extreme of
>making / and /usr together and to making it RO in hardware and
>see what happens - /etc is a problem.  Files in /etc need to change
>with some frequency.  Separate /  and /usr works.  Having /etc as a
>separate mount doesn't because of assumptions built into the
>system.  How to find /etc/vfstab or /etc/filesystems>

Quite.  While we now generally recommend having a merged / & /usr,
we understand there are those who have reasons to split the two.

Casper
--
Expressed in this posting are my opinions.  They are in no way related
to opinions held by my employer, Sun Microsystems.
Statements on Sun products included here are not gospel and may
be fiction rather than truth.

[ Post a follow-up to this message ]

Dave Hinz wrote:
> patlav@gmail.com wrote:
> 
>
> Since when?

The S in sbin stands for Statically linked, or at least it started out
standing for that.  Not for Single user mode.  It's since people
started
making the mistake of picking the wrong meaning for S.

Why did vendors start shipping dynamic binaries in either sbin?  I
suggest the answer "by mistake".

[ Post a follow-up to this message ]

On 12 Dec 2005 13:32:13 -0800, Doug Freyburger <dfreybur@yahoo.com> wrote:
> Dave Hinz wrote: 
>
> The S in sbin stands for Statically linked, or at least it started out
> standing for that.  Not for Single user mode.

That's what I thought, but you never know sometime.

> It's since people
> started
> making the mistake of picking the wrong meaning for S.

> Why did vendors start shipping dynamic binaries in either sbin?  I
> suggest the answer "by mistake".

Ignorace, you mean?

[ Post a follow-up to this message ]

"Doug Freyburger" <dfreybur@yahoo.com> writes:

>Dave Hinz wrote: 
[vbcol=seagreen]
>The S in sbin stands for Statically linked, or at least it started out
>standing for that.  Not for Single user mode.  It's since people
>started making the mistake of picking the wrong meaning for S.

This would seem there's some burden of proof that "sbin" post-dates
dynamic linking.

>Why did vendors start shipping dynamic binaries in either sbin?  I
>suggest the answer "by mistake".

Because the purpose changed....

Casper
--
Expressed in this posting are my opinions.  They are in no way related
to opinions held by my employer, Sun Microsystems.
Statements on Sun products included here are not gospel and may
be fiction rather than truth.

[ Post a follow-up to this message ]

In comp.unix.admin Dave Hinz <DaveHinz@spamcop.net>:
> On 12 Dec 2005 13:32:13 -0800, Doug Freyburger <dfreybur@yahoo.com> wrote:
 
[vbcol=seagreen]
> That's what I thought, but you never know sometime.

Really? Always was under the impression the "s" in "sbin" stands
for superuser bin, because it's in root's path.

Out of curiosity just run ldd /sbin/* on a sun box (5.10) and
most if not anything is dynamically linked, so it doesn't support
the theory of statically linked.

A check on HP-UX (11.11) shows most things in /sbin aren't
dynamically linked but in /usr/sbin they are.

FreeBSD (4.11) has lots of binaries statically linked in /sbin,
but a few are dynamically.

Linux shows more dynamically linked binaries then statically in
/sbin, but both are available.

Without trying out others, the behavior doesn't seem to be
consistent at all no matter if it's UNIX[tm] or not, so I'll
happily stay with the definition of "sbin == superuser bin",
which seems to make at least more sense to me.

--
Michael Heiming (X-PGP-Sig > GPG-Key ID: EDD27B94)
mail: echo zvpunry@urvzvat.qr | PERL -pe 'y/a-z/n-za-m/'
#bofh excuse 174: Backbone adjustment

[ Post a follow-up to this message ]

From: Casper H.S. Dik <Casper.Dik@Sun.COM>
Organization: Sun Microsystems, Netherlands
User-Agent: nn/6.6.2
Date: 13 Dec 2005 12:30:00 GMT
Lines: 19
Message-ID: <439ebec8$0$11065$e4fe514c@news.xs4all.nl>
NNTP-Posting-Host: 62.177.151.68
X-Trace: 1134477000 news.xs4all.nl 11065 casper/[::ffff:62.177.151.68]:3
7318
X-Complaints-To: abuse@xs4all.nl
Xref: number1.nntp.dca.giganews.com comp.unix.admin:120117

Michael Heiming <michael+USENET@www.heiming.de> writes:

>Out of curiosity just run ldd /sbin/* on a sun box (5.10) and
>most if not anything is dynamically linked, so it doesn't support
>the theory of statically linked.

Solaris 10 doesn't support static linking at all.  But even on
Solaris 9 most stuff under /sbin is dynamically linked, but
with a separate library/linker from /etc/lib.

/usr/sbin is normally dynamically linked, except for what's
in /usr/sbin/static (which is no longer present in S10)

Casper
--
Expressed in this posting are my opinions.  They are in no way related
to opinions held by my employer, Sun Microsystems.
Statements on Sun products included here are not gospel and may
be fiction rather than truth.

[ Post a follow-up to this message ]