From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1N71gA-0006VG-GW for garchives@archives.gentoo.org; Sun, 08 Nov 2009 06:55:14 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id D3EEEE09E1; Sun, 8 Nov 2009 06:55:12 +0000 (UTC) Received: from mail-yw0-f191.google.com (mail-yw0-f191.google.com [209.85.211.191]) by pigeon.gentoo.org (Postfix) with ESMTP id B9069E09E1 for ; Sun, 8 Nov 2009 06:55:12 +0000 (UTC) Received: by ywh29 with SMTP id 29so1934571ywh.32 for ; Sat, 07 Nov 2009 22:55:12 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=XOH70h5IOiSoln3W/FsDtmNjiMUa3YrUwwGFKR0mBuI=; b=P/Xfg8Ii+4DahRbyXswtzQNoHwcwkXxC9xSmMp3reMeYldUnSjnLwXk1dqchCubITC UZZ3cZFRFZYoiJJB/w4bp7LxJ845Yfh8PB9G0Eek1Rdw5d2I2LHeg/JK4ljb5VFHrXWU yvMKdZ7dYel4ezWjlsqDUnSJcRpPSBoFhCjag= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; b=Nr/SW7ehHZM9nkoFThQmOwuU1bCpnu0X0ao5Oj9nt+VO87xEgYcb906EipXeuGEU9C paP5wog9V4cx1P4pzLAh5FWk6UGiDD02c+jGfxtV1n4YI3nFxVI/Nm42COtBq44o+NUU ck04WWw3hSSyqR7lNZ9ncXaWeqFxyBp/QSBUI= Received: by 10.91.27.6 with SMTP id e6mr11683359agj.27.1257663312191; Sat, 07 Nov 2009 22:55:12 -0800 (PST) Received: from ?192.168.1.1? (adsl-0-92-136.jan.bellsouth.net [65.0.92.136]) by mx.google.com with ESMTPS id 34sm743796yxf.47.2009.11.07.22.55.08 (version=SSLv3 cipher=RC4-MD5); Sat, 07 Nov 2009 22:55:09 -0800 (PST) Message-ID: <4AF66B4B.5060602@gmail.com> Date: Sun, 08 Nov 2009 00:55:07 -0600 From: Dale User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.23) Gecko/20091007 SeaMonkey/1.1.18 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Re: decrapify your kernel config WAS: ps shows pegasus process running - what is it? References: <39CFC182-B039-4D26-9880-DC26485DF8F2@stellar.eclipse.co.uk> <200911080110.37891.volkerarmin@googlemail.com> <9C4CBF5D-4092-4903-9470-E981F9B9BB3C@stellar.eclipse.co.uk> <200911080150.55559.volkerarmin@googlemail.com> In-Reply-To: <200911080150.55559.volkerarmin@googlemail.com> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Archives-Salt: b8ac5496-dc8e-46e4-8e80-8fa60eacd04b X-Archives-Hash: 9484cd9799bdf22282fae1c405ba8eb0 Volker Armin Hemmann wrote: > On Sonntag 08 November 2009, Stroller wrote: > >> On 8 Nov 2009, at 00:10, Volker Armin Hemmann wrote: >> >>> ... >>> using a livecds kernel is probably the worst decision out there. >>> >>> http://www.kroah.com/lkn/ >>> >>> as you can see, you don't have to download it. >>> >>> Or just do it step for step, reading help files. >>> >>> seccomp? Except Andrea Arcangeli nobody uses it. Can be deactivated. >>> I2O? >>> Almost nobody uses it. Especially not 'commodity' hardware, out it >>> goes. Numa? >>> Do you have a multi-socket system? No? Then you don't need it. ... >>> you can >>> remove a lot of cruft that way. Namespaces - you don't need it? Kick >>> 'em out. >>> Group scheduling? Sure, a great way to reduce performance... >>> >> But Volker, if it takes me an hour to decrapify my kernel config and >> make it faster, it will probably take 1000 years for those speed >> improvements to pay off. >> >> If I had unlimited time then I would love to read that book. I really >> LIKE the idea of decrapifying my kernel config. But realistically, any >> time I spend on it is time wasted, for which no difference will be >> appreciable. >> >> Stroller. >> >> > > I am not you, but I need maybe 5min for a config ;) > > and there are more benefits. Smaller binary, more cpu cache free for real data. > Better performance lies that way. Also, you don't have to wonder about > processes you did not start. Security is also a point. A smaller codebase in > use is a saver codebase in use. A lot of bugs only affect kernels with certain > features turned on - it is very relaxing if you don't have that feature... > > I agree. When I first installed Gentoo I had never built a kernel or even run make menuconfig. It took me three tries to get a bootable kernel but it was worth it. I don't put something in my kernel that isn't needed or that I use, well except for NTFS support. I may have to rescue my brother one day. Point being, you only have to build one good kernel then you can copy and run make oldconfig after that. I'm with Volker on this, 5 minutes at most once you get a good build. If you know your system really well, you may can start from scratch and config one in that time. You really need to learn to make your own kernel. After all, it's the first file your computer loads when the OS starts booting up. It's also the first level of security. It is what deals with all the hardware on the most basic level. You also get to see your head swell when you get a lean kernel and say "I did that". Dale :-) :-)