| 1 |
Dirk Heinrichs wrote: |
| 2 |
> Am Samstag, 9. Mai 2009 12:20:46 schrieb Stroller: |
| 3 |
> |
| 4 |
> |
| 5 |
>>> This is Gentoo, so you as the user define the rules. And for _me_, |
| 6 |
>>> it definitely |
| 7 |
>>> _is_ a rule. |
| 8 |
>>> |
| 9 |
>> Could you possibly explain why, please? |
| 10 |
>> |
| 11 |
> |
| 12 |
> Because it eliminates the need for an initramfs (which I used until a few |
| 13 |
> weeks ago), even if you've got your / on an encrypted logical volume. I simply |
| 14 |
> put just enough userspace tools into /boot to be able to create the dmcrypt |
| 15 |
> mapping and mount the real root fs, then run pivot_root and /sbin/init. |
| 16 |
> |
| 17 |
> So in the end it's the same than using an initramfs, but with less hassle. And |
| 18 |
> for consistency reasons, I also use this scheme on every machine. |
| 19 |
> |
| 20 |
> Bye... |
| 21 |
> |
| 22 |
> Dirk |
| 23 |
> |
| 24 |
|
| 25 |
Wasn't there a security reason for this setup at one time? If you put |
| 26 |
/boot on a separate partition, then the only time it needed to be |
| 27 |
mounted was to update the kernel or edit grub/lilo. That was what I was |
| 28 |
reading when I installed Gentoo oh so many ages ago. |
| 29 |
|
| 30 |
Is this still true? |
| 31 |
|
| 32 |
Dale |
| 33 |
|
| 34 |
:-) :-) |
Archives