| 1 |
On Wed, Jul 18, 2012 at 3:03 PM, Canek Peláez Valdés <caneko@×××××.com> wrote: |
| 2 |
> On Wed, Jul 18, 2012 at 1:53 PM, Michael Mol <mikemol@×××××.com> wrote: |
| 3 |
>> On Wed, Jul 18, 2012 at 2:47 PM, Alec Warner <antarus@g.o> wrote: |
| 4 |
> [snip] |
| 5 |
>>> Debian uses initramfs-tools... |
| 6 |
>> |
| 7 |
>> AFAIK, neither genkernel nor dracut were expected to get tied to the |
| 8 |
>> Gentoo update process. Has that changed? |
| 9 |
> |
| 10 |
> The kernel you are running (if you update your machine) is not tied to |
| 11 |
> the Gentoo update process. The *source code* gets installed, but the |
| 12 |
> kernel source remains unchanged in /usr/src/whatever. It's the user |
| 13 |
> responsibility to configure, compile, and install the kernel (and then |
| 14 |
> update LILO, grub-legacy or GRUB2). It can be automated with (ta-da) |
| 15 |
> genkernel, but it's not "tied to the Gentoo update process". |
| 16 |
> |
| 17 |
> I really don't see that much difference with needing to also update |
| 18 |
> the initramfs, if needed. |
| 19 |
|
| 20 |
What if your DNS resolver in your rescue shell has a vulnerability? |
| 21 |
What if wget, links or whatever network tools you use during recovery |
| 22 |
have a vulnerability? |
| 23 |
|
| 24 |
These are tools which are commonly placed in initramfs. |
| 25 |
|
| 26 |
> |
| 27 |
> Because, besides, if your /usr is not in a different partition, you |
| 28 |
> don't even *need* an initramfs. In that case not using an initramfs is |
| 29 |
> supported by all upstreams. |
| 30 |
|
| 31 |
And what of /var? /opt? The problem with the /usr merge upstream is |
| 32 |
that someone didn't think things through when they pushed it, and the |
| 33 |
same reasoning used to justify it easily justifies changing the way |
| 34 |
/var and /opt are treated. |
| 35 |
|
| 36 |
-- |
| 37 |
:wq |
Archives