Fedora and udev
Russell Coker
russell at coker.com.au
Tue Aug 24 07:25:07 UTC 2004
On Tue, 24 Aug 2004 04:49, Jeremy Katz <katzj at redhat.com> wrote:
> > One option would be to use an ext2 file system on a ram disk for udev.
> > It would do all the same stuff as ramfs (at a slightly higher memory
> > cost) and work perfectly with SE Linux.
>
> It has a number of other, not really desired side effects as well.
> 1) Kernel people don't really like ramdisks anymore
> 2) Doing this requires mke2fs in the initramfs. Bleah.
> 3) It puts an artificial cap on the size of your /dev that then has to
> be adjustable. And the cap is related to an overhead of memory usage.
> This is ugly to get "right"
I agree that ext2 is not a long-term solution to this problem.
However at the moment we have a default configuration that's grossly broken
with regard to SE Linux. If you upgrade a machine which runs the "targeted"
policy to rawhide then several important daemons (including syslogd) stop
working. If you upgrade a machine which runs the "strict" policy then it
will fail to boot.
If we were unable to get ramfs working in a reasonable amount of time then
ext2 would be a good option to consider IMHO.
--
http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/ Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/ My home page
More information about the fedora-selinux-list
mailing list