Re: Bits from the Release Team - Kicking off Wheezy

To: Roger Leigh <rleigh@codelibre.net>
Cc: debian-devel@lists.debian.org
Subject: Re: Bits from the Release Team - Kicking off Wheezy
From: Henrique de Moraes Holschuh <hmh@debian.org>
Date: Thu, 31 Mar 2011 11:42:32 -0300
Message-id: <[🔎] 20110331144232.GD19043@khazad-dum.debian.net>
In-reply-to: <[🔎] 20110331144027.GC19043@khazad-dum.debian.net>
References: <20110329095102.GX37987@feta.halon.org.uk> <[🔎] 20110330190917.GG20813@codelibre.net> <[🔎] 20110330194521.GK12748@l04.local> <[🔎] 87d3l8s1w7.fsf@frosties.localnet> <[🔎] 20110330234806.GA22088@khazad-dum.debian.net> <[🔎] 20110331080510.GJ20813@codelibre.net> <[🔎] 20110331144027.GC19043@khazad-dum.debian.net>

On Thu, 31 Mar 2011, Henrique de Moraes Holschuh wrote:
> On Thu, 31 Mar 2011, Roger Leigh wrote:
> > > > > /etc/adjtime
> > > 
> > > This needs to survive reboots, and it is also needed early in the boot.
> > > It is used to correct the RTC syndrome.
> > > 
> > > I am at a loss about how it could be made compatible with RO /.
> > > 
> > > > > /etc/hosts.deny (written by denyhosts, hence that one is a bit hard to fix)
> > 
> > This one really belongs under /var given that it's writable.  Do we
> > really need it that urgently before /var is mounted?  Can't we reload
> > whatever is using it after /var becomes available?  Isn't this also
> 
> Only if we would also change tcp wrappers to deny all if it cannot read
> both /etc/hosts.allow and /etc/hosts.deny, so that you can play symlink
> games.
> 
> Now, I just checked, and Debian tcpwrappers CAN read a list of files to

s/files/addresses/

> be acted upon (allowed, denied, etc) from a regular file.  So we can
> probably just tell denyhosts to switch to that usage pattern, and
> /etc/hosts.* can be made RO.

-- 
  "One disk to rule them all, One disk to find them. One disk to bring
  them all and in the darkness grind them. In the Land of Redmond
  where the shadows lie." -- The Silicon Valley Tarot
  Henrique Holschuh

Reply to:

References:
- Re: Bits from the Release Team - Kicking off Wheezy
  - From: Roger Leigh <rleigh@codelibre.net>
- Re: Bits from the Release Team - Kicking off Wheezy
  - From: Michael Tautschnig <mt@debian.org>
- Re: Bits from the Release Team - Kicking off Wheezy
  - From: Goswin von Brederlow <goswin-v-b@web.de>
- Re: Bits from the Release Team - Kicking off Wheezy
  - From: Henrique de Moraes Holschuh <hmh@debian.org>
- Re: Bits from the Release Team - Kicking off Wheezy
  - From: Roger Leigh <rleigh@codelibre.net>
- Re: Bits from the Release Team - Kicking off Wheezy
  - From: Henrique de Moraes Holschuh <hmh@debian.org>

Prev by Date: Re: Bits from the Release Team - Kicking off Wheezy
Next by Date: Re: Dropping HAL? [Was: Bits from the Release Team - Kicking off Wheezy]
Previous by thread: Re: Bits from the Release Team - Kicking off Wheezy
Next by thread: Re: Bits from the Release Team - Kicking off Wheezy
Index(es):
- Date
- Thread