| 1 |
Am Samstag, 9. Mai 2009 14:46:39 schrieb Dale: |
| 2 |
|
| 3 |
> Wasn't there a security reason for this setup at one time? If you put |
| 4 |
> /boot on a separate partition, then the only time it needed to be |
| 5 |
> mounted was to update the kernel or edit grub/lilo. That was what I was |
| 6 |
> reading when I installed Gentoo oh so many ages ago. |
| 7 |
> |
| 8 |
> Is this still true? |
| 9 |
|
| 10 |
Of course, it needs to mounted rw for the few seconds needed to discover the |
| 11 |
LVs, ask the user for the passphrase and create the dmcrypt mapping. Then it's |
| 12 |
unmounted again and remounted ro during normal system boot. I don't consider |
| 13 |
this a security problem. If it was, I could also stop using Linux altogether, |
| 14 |
since there are also other filesystem on my system which need to be mounted rw |
| 15 |
if the system should do something useful. |
| 16 |
|
| 17 |
Bye... |
| 18 |
|
| 19 |
Dirk |
Archives