1 |
On 08/07/2016 02:38 AM, Consus wrote: |
2 |
> On 08:48 Sun 07 Aug, Michał Górny wrote: |
3 |
>> Sure we do. In the meantime, nobody uses gentoo anymore because it |
4 |
>> still can't deal with accepting contributions and in the meantime the |
5 |
>> few last developers retired, and users long ago switched to the |
6 |
>> comparatively recent distribution of Debian stable. |
7 |
> |
8 |
> Finally the voice of reason. |
9 |
|
10 |
Reasonable? Are you kidding? |
11 |
<rolling on the floor with laughter, uncontrollably > |
12 |
|
13 |
In this day and age, quick installs are the mantra, either for VMs or |
14 |
containers or workstations, particularly for |
15 |
application-specific-servers or a variety of security apparatus. |
16 |
Although the 'handbook' is an excellent reference guide and noob-filter, |
17 |
the simple fact of the matter is most (nix) professionals consider the |
18 |
gentoo install system to be arcane and an incredible 'cost barrier to |
19 |
entry'. THAT, the lack of a well thought out, smooth, quick/easy install |
20 |
which is intentionally not available, because it is seen as a satanic |
21 |
idea, is the 800 pound gorilla on why folks passionately avoid gentoo..... |
22 |
|
23 |
|
24 |
As a team, we could have a simple default program for a simple default |
25 |
disk format, and a variety of 'stage-4' images, maybe updated every 3 |
26 |
months, to get a gentoo system up, quickly. Not an anything you want it |
27 |
to be, but a few, common choices. Perhaps a security apparatus, commonly |
28 |
needed, built on the hardened project? (like a bridge or a firewall)? |
29 |
|
30 |
|
31 |
Then index the noob questions received from the jentoo-users ML, into |
32 |
the handbook or companion documents, in a hyperlinked FAQ. Folks could |
33 |
then work the question/support board of jentoo-user before being |
34 |
accepted into jproxy-maint. JProxy-maint would then need to become a |
35 |
collection of docs to read, a half dozen ebuilds to update and then |
36 |
bang, junior-dev status where folks can work on non-critical parts of |
37 |
the jentoo tree. And there could be a 'bypass exam' that if you know |
38 |
the basics of *nix and shell, you could jump straight into contributing |
39 |
on jentoo. Or better yet:: (Fork the tree for the jproxy-maint and |
40 |
junior-devs to run themselves. That fork could be limited to a few |
41 |
security appliance(s) system, and an embedded jentoo system (rasp. pi) |
42 |
and a firewall/bridge. Let them use java* codes, as that is what all the |
43 |
universities are teaching and promoting. I agree with gentoo proper on |
44 |
severely restricting java*, on gentoo-proper, but that sort of thing is |
45 |
killing gentoo and just appears to the open world as a filter mechanism |
46 |
to keep out and go elsewhere, snoot. There are just too many exciting |
47 |
and useful codes out there running java. |
48 |
|
49 |
|
50 |
After 12 years of using gentoo, the gentoo install semantics, still are |
51 |
abysmal, imho. I just fundamentally disagree with forcing folks to first |
52 |
endure the handbook before getting any gentoo (working gentoo system) |
53 |
gratification. That is why 'Debian/buntu' has market share over us. Here |
54 |
is a very useful "canned" install that, if emulated, would give gentoo |
55 |
reams of "kudos" or "atta-boys" should we publish (provide) something |
56 |
like this.[1] |
57 |
|
58 |
[1] http://blog.securityonion.net/ |
59 |
|
60 |
|
61 |
"Security Onion is a Linux distro for intrusion detection, network |
62 |
security monitoring, and log management. It's based on Ubuntu and |
63 |
contains Snort, Suricata, Bro, OSSEC, Sguil, Squert, ELSA, Xplico, |
64 |
NetworkMiner, and many other security tools. The easy-to-use Setup |
65 |
wizard allows you to build an army of distributed sensors for your |
66 |
enterprise in minutes!" |
67 |
|
68 |
|
69 |
We could even call it "jentoo", as it could be labeled to indicate it |
70 |
is for junior developers to experiment, learn, grow and then become a |
71 |
fleeting-gentoo-dev found @ gentoo-dev proper. And yes enjoy the latest |
72 |
of from the (insecure) java world. |
73 |
|
74 |
|
75 |
Restated:: the current (lack) of a slick, simple & quick install |
76 |
semantic, is what's killing gentoo, if it is dying. What I run into are |
77 |
reams of deeply accomplished technical folks that use gentoo regularly |
78 |
and like the current filters that run off the less astute, imho. YMMV. |
79 |
Most all other rolling distros have a much simpler installation |
80 |
semantic, if not a variety of easy install options and ways to participate. |
81 |
|
82 |
Perhaps a well defined OS model, where gentoo can run (secure) VMs or |
83 |
containers from jentoo? That would expand the model of usage and |
84 |
encourage inclusion, provide a pathway to the ultimate gentoo-dev status |
85 |
and encourage innovation (and failure) all in a secure model? |
86 |
|
87 |
Heaven forbid that we put up a few dozen (unsupported) jentoo VMs, |
88 |
container-images or stage-4 (specifically purposed) choices where |
89 |
folks could only get support from jentoo-user. No sir, we cannot make |
90 |
jentoo fun and enjoyable and quick (and sleazy) can we? |
91 |
|
92 |
|
93 |
And yes allow java, the way it is available on most other distros... |
94 |
The current process of requiring all the java codes to be broken down |
95 |
into 100% discernable codes is a tremendous barrier. After all, most of |
96 |
the codes that use that stuff, are full of holes anyway; that's the very |
97 |
nature of open, fast, exciting new codes. They only become secure |
98 |
after years of vetting (fuzzing) anyway. So make the host gentoo image |
99 |
very secure and allow jentoo projects to be a VM, or container or such |
100 |
construct, without all the hassles of gentoo proper. Let the purist |
101 |
ensure that gentoo is secure and isolated and let the multitude play |
102 |
with java, however they like (in a VM, or a container image or a stage-4). |
103 |
|
104 |
You have to look at CoreOS and conclude that even folks with deep |
105 |
expertise and deep pockets want an easy install (even roll-back) OS. |
106 |
|
107 |
|
108 |
|
109 |
hth, |
110 |
James |