[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Support for merged-/usr now in debootstrap; default for stretch?

On Wed, Sep 14, 2016 at 02:38:09PM +0000, Felipe Sateler wrote:
> On Tue, 13 Sep 2016 22:36:58 +0200, Ansgar Burchardt wrote:
> > Hi,
> > 
> > debootstrap in unstable can now install with merged-/usr, that is with
> > /bin, /sbin, /lib* being symlinks to their counterpart in /usr.  Run
> > 
> >   debootstrap --merged-usr testing .../testing
> >   http://deb.debian.org/debian
> > 
> > to give it a try.
> > 
> > It has been previously suggested to make this the default for (at least)
> > new installations.  I think Russ' earlier mail[1] explains quite well
> > why the "split" between / and /usr doesn't really work out for Debian
> > these days and that trying to maintain it for some configurations (which
> > are not documented) is mostly busy-work.  There is also a nice article
> > on LWN[2] summarizing earlier discussions.
> > 
> > I found these arguments convincing enough and would like to see the
> > default switched to merged-/usr for Stretch and later.  Possibly also
> > switching systems on upgrade to the new scheme (not necessarily already
> > in the Stretch release cycle).
> I agree that merging /usr is a good thing to do. We should default to 
> that, and at some point force the merge somehow (via the usrmerge package?
> ). Ideally, stretch systems that are fresh-installed should have the same 
> configuration as stretch-upgraded systems, otherwise confusion will ensue.


Except that breaks having different mount points, which is useful to
enforce different mount options (my /usr is nodev,ro).
Does this mean this cannot be supported anymore ? It would be a step
backward, security-speaking, if split /usr does not work at all.


Reply to: