1 |
-----BEGIN PGP SIGNED MESSAGE----- |
2 |
Hash: SHA1 |
3 |
|
4 |
On 09/07/2011 05:27, Michał Górny wrote: |
5 |
|
6 |
> On Wed, 07 Sep 2011 12:17:21 +0300 Alexey Shvetsov <alexxy@g.o> |
7 |
|
8 |
> wrote: |
9 |
|
10 |
> |
11 |
|
12 |
>> Moving things as openrc to /usr/libexec will effectevely barake old |
13 |
|
14 |
>> systems with separtae / and /usr. So it isnt good idea |
15 |
|
16 |
> |
17 |
|
18 |
> Old systems should migrate to initramfs, like it was already pointed out |
19 |
|
20 |
> before. Breakage is already there, you just don't notice it. |
21 |
|
22 |
> |
23 |
|
24 |
|
25 |
|
26 |
|
27 |
|
28 |
|
29 |
|
30 |
|
31 |
I've used a separate /usr on every system I've ever built on Gentoo, and |
32 |
some have filesystems going back years. Never once have I had any issues |
33 |
with separate / and /usr, and none of them use an initramfs. Our own |
34 |
security guide has made this recommendation for as long as I can remember |
35 |
(so one can mark /usr as read-only on production setups, for example). |
36 |
|
37 |
As far as initramfs, is this something that would need to go into the |
38 |
kernel? I hand-build all of my kernels, so any such initramfs package might |
39 |
be better off as a standalone package available on the FS at kernel build |
40 |
time. I also netboot some of my systems, and they have limits on the total |
41 |
size of the kernel image (7.2MB on one, ~40MB on another, etc), hence the |
42 |
need to keep this small or find another way to do things. |
43 |
|
44 |
Are there possibilities about breaking off just a small piece of openrc and |
45 |
putting that into /run (or /boot)? Enough of the core scripts so that it |
46 |
can find /usr and mount it before continuing? |
47 |
|
48 |
|
49 |
- -- |
50 |
Joshua Kinard |
51 |
Gentoo/MIPS |
52 |
kumba@g.o |
53 |
4096R/D25D95E3 2011-03-28 |
54 |
|
55 |
"The past tempts us, the present confuses us, the future frightens us. And |
56 |
our lives slip away, moment by moment, lost in that vast, terrible in-between." |
57 |
|
58 |
- --Emperor Turhan, Centauri Republic |
59 |
-----BEGIN PGP SIGNATURE----- |
60 |
Version: GnuPG v2.0.17 (MingW32) |
61 |
|
62 |
iQIcBAEBAgAGBQJOZ+KrAAoJENsjoH7SXZXjagYP/A9eGlVOw8e0+uZFz7RMo3wD |
63 |
VYP4/oeQ3WMg7MdFX6YH9fbItyifG4szML1k1gIzh3woZrt9l6GWV7Jd0MM9jd9D |
64 |
s26pSe3OhoKTdDImFwSQfQmwX9K6kiDa8K9x/Tj9bD9Z+/513VhpQgN/VH70UarX |
65 |
LW/aoeLFwXx6ppU6WXj2u15e7H/3vkYRMYI+jDKrRxWXybT/IMM55B8mBgpum6dc |
66 |
6cMNtBy751hYzk4ibszBUuezkbOh+yx/GUFksuBP/1J3u1Vvre7ejH184zvWveMS |
67 |
ZBQtxsaAFz6/fhhhV9QqKy0bQq7V6oTK4QE6DC+BpkhBPkuR2kJ01PyDzZcqr9Lg |
68 |
luSBJMSxpntbfm68P/HH7aQU3VeomSfucBjWcFRAJExd+EFQSLk7Z2s7ijkv2YHk |
69 |
RvMypR8ARxumSj3vQE2XhG9c9GxZWMXF+3X9J7BGqdfBFCJjgOa4sYLnwsAMTtcq |
70 |
jtJHW/dJ+SsJw7wAUeNRZsg+moMCLWknvbgPhd6dcSY36P6TytMMBw4NPbPTs96l |
71 |
wC0zAX6Dk0/rCcm6H0U8FUJw/9MjAgnGG1Jo54ed11e+ePWzTuvLIs4b3OICN0TL |
72 |
Uxr67jsIz5r14JlyaBL0rNCQVMFvjrxO4lhKI62xvLFX334a7uimKReJZIHXOjdt |
73 |
CfygZB6C4kK8hPPbgks1 |
74 |
=Y0sh |
75 |
-----END PGP SIGNATURE----- |