Did you know you can use systemd to turn on tmpfs for /tmp ??? I had no clue that was possible, always did it through fstab - but systemctl is-enabled tmp.mount That will tell you if systemd has configured /tmp to mount as tmpfs (default in CentOS 7 is no) systemctl enable tmp.mount That, as you can probably guess, tells systemd to mount /tmp as tmpfs next time the system boots. -=- Just thought I would pass it along in case others may benefit. For me, I only need /tmp as tmpfs on my Bitcoin box - and then only when generating private keys for cold storage, SSDs are often not very good at securely deleting files. So I use tmpfs for /tmp and generate the private keys for cold storage to a file in /tmp and then print it from there (for storage in safe deposit box) - so that the private keys can't be recovered from the SSD. Yes, booting off a CD to generate and then print works too, but that's bothersome. Anyway just in case anyone else needs /tmp as tmpfs for anything, thought I'd pass the tip along.
On Sun, 2016-01-10 at 06:52 -0800, Alice Wonder wrote:> For me, I only need /tmp as tmpfs on my Bitcoin box - and then only when > generating private keys for cold storage, SSDs are often not very good > at securely deleting files. So I use tmpfs for /tmp and generate the > private keys for cold storage to a file in /tmp and then print it from > there (for storage in safe deposit box) - so that the private keys can't > be recovered from the SSD.Why not, on start-up, create a 'ram disk' and do your sensitive work in volatile RAM or is this what 'tmpfs' implies ? -- Regards, Paul. England, EU. England's place is in the European Union.
On 01/11/2016 06:50 AM, Always Learning wrote:> Why not, on start-up, create a 'ram disk' and do your sensitive work in > volatile RAM or is this what 'tmpfs' implies ?I think that's what OP expected tmpfs to be, but it should be noted that tmpfs *can* be swapped to disk, so it should not be used for data that you don't want to ever hit non-volatile storage (unless you have no swap space).