/ must be adequate to boot, restore, recover, and/or repair the system.
  • Minimal Mounting
  • Unshareable System-Specific Configuration
  • Minimize Vulnerability
Required binEssential command binaries
bootStatic boot loader files
devDevice files
[etc, lib, media, mnt, opt, sbin, srv, tmp, usr, var]specified
Specific Options homeUser home directories
lib*Alternate format libraries
rootRoot user home directory
Applications must never create files or subdirectories in root.
  • Demands Space, Performance, And Security
  • Interferes With Administration