From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-user+bounces-143454-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	by finch.gentoo.org (Postfix) with ESMTP id A35841381F3
	for <garchives@archives.gentoo.org>; Sun, 16 Dec 2012 22:16:07 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 8342421C08F;
	Sun, 16 Dec 2012 22:15:51 +0000 (UTC)
Received: from mail-bk0-f53.google.com (mail-bk0-f53.google.com [209.85.214.53])
	(using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id 433BF21C008
	for <gentoo-user@lists.gentoo.org>; Sun, 16 Dec 2012 22:14:22 +0000 (UTC)
Received: by mail-bk0-f53.google.com with SMTP id j5so2396786bkw.40
        for <gentoo-user@lists.gentoo.org>; Sun, 16 Dec 2012 14:14:21 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=from:to:cc:subject:date:message-id:user-agent:in-reply-to
         :references:mime-version:content-transfer-encoding:content-type;
        bh=l0qR8GowofCBbwdmZ8ex0IMYpuCbpvNWi0HGeLuHY58=;
        b=YEk2xOvH8n6eNeX+gB/+9HuQZ5Zgu914zSPbFzeOvqbo6bhCOASPYdAYcTi0b7m6F/
         +HVFiz0uiLKUKWuTGRs6rScxVTtGLk6G0MvtI/VMacKRsW6/xfW3vgnI1RLYdX10uxnx
         8ig4ywldzMms7qkSD7cqzPBirsq2M37EcUt+amHmAK4WnqRdIiDd/srN7VvsnT0VrwZb
         k0y7DKEzVPUs4CkGUrCkDcGRQUnDJngmBfiYdW6c+EiorLsR6duOsnxAdd9DFD1Y1wRx
         3yICHungNGEFZnNVHmnxQ/FHN5y2INrqs8ZZkFqFSABa++e7Jg6Z3QYSRC9LVMOg/OGR
         +tBA==
Received: by 10.204.149.86 with SMTP id s22mr5275862bkv.57.1355696061750;
        Sun, 16 Dec 2012 14:14:21 -0800 (PST)
Received: from localhost.localnet (p4FC605DF.dip0.t-ipconnect.de. [79.198.5.223])
        by mx.google.com with ESMTPS id 18sm8018643bkv.0.2012.12.16.14.14.20
        (version=TLSv1/SSLv3 cipher=OTHER);
        Sun, 16 Dec 2012 14:14:20 -0800 (PST)
From: Volker Armin Hemmann <volkerarmin@googlemail.com>
To: gentoo-user@lists.gentoo.org
Cc: Nikos Chantziaras <realnc@gmail.com>
Subject: Re: [gentoo-user] Re: Anyone switched to eudev yet?
Date: Sun, 16 Dec 2012 23:14:14 +0100
Message-ID: <2150333.mhR4e5T1L6@localhost>
User-Agent: KMail/4.9.4 (Linux/3.4.20; KDE/4.9.4; x86_64; ; )
In-Reply-To: <kaldtl$9u8$1@ger.gmane.org>
References: <50CB1942.3020900@gmail.com> <1687057.4tTYKEJzqn@localhost> <kaldtl$9u8$1@ger.gmane.org>
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
Content-Transfer-Encoding: 7Bit
Content-Type: text/plain; charset="us-ascii"
X-Archives-Salt: 912268bf-96ec-4c06-bd0a-ebf5550aa1f4
X-Archives-Hash: c6092f1387f5273b45979933b192a013

Am Sonntag, 16. Dezember 2012, 23:19:46 schrieb Nikos Chantziaras:
> On 15/12/12 12:18, Volker Armin Hemmann wrote:
> > Am Freitag, 14. Dezember 2012, 21:34:54 schrieb Kevin Chadwick:
> >> On Fri, 14 Dec 2012 08:53:35 -0800
> >> 
> >> Mark Knecht <markknecht@gmail.com> wrote:
> >>> I guess the other question that's lurking here for me is why do you
> >>> have /usr on a separate partition? What's the usage model that drives
> >>> a person to do that? The most I've ever done is move /usr/portage and
> >>> /usr/src to other places. My /usr never has all that much in it beyond
> >>> those two directories, along with maybe /usr/share. Would it not be
> >>> easier for you in the long run to move /usr back to / and not have to
> >>> deal with this question at all?
> >> 
> >> It should be moving in the other direction for stability reasons and
> >> busybox is no full answer.
> >> 
> >> On OpenBSD which has the benefit of userland being part of it. All the
> >> critical single user binaries are in root and built statically as much
> >> as possible, maximising system reliability no matter the custom
> >> requirements or packages.
> > 
> > until a flaw is found in one of the libs used and all those statically
> > linked binaries are in danger.  Well done!
> 
> I don't see why this would only affect statically linked executables.
> If a bug is found in a library, all dynamically linked executables are
> affected as well.  When the BSD packagers put out an update for the
> library, they'll also put updates for the static binaries that use it.
> 
> I don't see any security issue here.

with dynamically linked libs you can change just the lib, you can even just 
use some LD_PRELOAD workaround. 

As you said yourself - with statically linked libs you have to replace half of 
your system.. and until the binaries are ready for distribution you can't even 
work around it.

-- 
#163933