From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1M2m4S-0006Cm-Oo for garchives@archives.gentoo.org; Sat, 09 May 2009 12:54:29 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 6C1B9E02B8; Sat, 9 May 2009 12:54:27 +0000 (UTC) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.188]) by pigeon.gentoo.org (Postfix) with ESMTP id 14DDEE02B8 for ; Sat, 9 May 2009 12:54:27 +0000 (UTC) Received: from rohan.altum.de (achn-4db4d2f2.pool.einsundeins.de [77.180.210.242]) by mrelayeu.kundenserver.de (node=mreu2) with ESMTP (Nemesis) id 0MKv5w-1M2m4Q1n7k-0000v3; Sat, 09 May 2009 14:54:26 +0200 Received: from localhost (localhost [127.0.0.1]) by rohan.altum.de (Postfix) with ESMTP id 1C146700091 for ; Sat, 9 May 2009 14:54:26 +0200 (CEST) Received: from gondolin.localnet (gondolin.altum.de [192.168.1.4]) (Authenticated sender: heini) by rohan.altum.de (Postfix) with ESMTPSA id 65E44700086 for ; Sat, 9 May 2009 14:54:23 +0200 (CEST) From: Dirk Heinrichs Organization: Privat To: gentoo-user@lists.gentoo.org Subject: Re: /boot or not /boot (was Re: [gentoo-user] can't stop the panic on eeepc) Date: Sat, 9 May 2009 14:54:22 +0200 User-Agent: KMail/1.11.3 (Linux/2.6.29.2; KDE/4.2.3; i686; ; ) References: <73087.60162.qm@web31607.mail.mud.yahoo.com> <200905091441.44936.dirk.heinrichs@online.de> <4A057B2F.9050804@gmail.com> In-Reply-To: <4A057B2F.9050804@gmail.com> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1459539.n43qed1WAy"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200905091454.22915.dirk.heinrichs@online.de> X-Provags-ID: V01U2FsdGVkX1+iiH88T1BBDo7EqvH0FIanVj30+SfRh0t01SZ CgLPc8rH3S1FhhXKUQVA9XjrDQpY2JDImK9cdb1ZhgnG5X9xCn ho0LTPDdz6AVjR+r1mP3A== X-Archives-Salt: 8c414a32-4cb1-4637-8404-512a3e696674 X-Archives-Hash: 527015dd90f3de58e3a4632c603bef10 --nextPart1459539.n43qed1WAy Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Am Samstag, 9. Mai 2009 14:46:39 schrieb Dale: > Wasn't there a security reason for this setup at one time? If you put > /boot on a separate partition, then the only time it needed to be > mounted was to update the kernel or edit grub/lilo. That was what I was > reading when I installed Gentoo oh so many ages ago. > > Is this still true? Of course, it needs to mounted rw for the few seconds needed to discover th= e=20 LVs, ask the user for the passphrase and create the dmcrypt mapping. Then i= t's=20 unmounted again and remounted ro during normal system boot. I don't conside= r=20 this a security problem. If it was, I could also stop using Linux altogethe= r,=20 since there are also other filesystem on my system which need to be mounted= rw=20 if the system should do something useful. Bye... Dirk --nextPart1459539.n43qed1WAy Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.11 (GNU/Linux) iD8DBQBKBXz+8NVtnsLkZ7sRApzjAJoDJuxA7PaDF5aAOzrfu6m9WQIRKwCgpuOS WorTHXsiA21FW/YDpD9sWC4= =S3FC -----END PGP SIGNATURE----- --nextPart1459539.n43qed1WAy--