When to mount /lib and /usr/lib ?
Steve Langasek
steve.langasek at ubuntu.com
Thu Sep 17 08:23:27 BST 2009
On Thu, Sep 17, 2009 at 12:03:37AM +0200, Siggy Brentrup wrote:
> I'm really unsure whether this is the list to ask this question on
> with upstart not yet implementing a dependency based boot sequence the
> upstart-devel list seems inappropriate to me.
> In the course of my tiny usb-booster project [1] security
> considerations (cf [2]) make it necessary to verify the SHA256 sum
> before mounting /lib resp. /usr/lib partitions from a memory stick.
> The question now is if it's early enough to mount /lib when rc?.d
> scripts are run or should it even be done early in inittab? Also take
> into consideration that calculating the SHA256 sum of the whole /lib
> partition takes about 20s while /usr/lib requires an ample 90s.
No. /lib must be on the root filesystem. Whatever you're doing here, if it
needs to be done before /lib is mounted then it needs to be done in the
initramfs.
Cheers,
--
Steve Langasek Give me a lever long enough and a Free OS
Debian Developer to set it on, and I can move the world.
Ubuntu Developer http://www.debian.org/
slangasek at ubuntu.com vorlon at debian.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 827 bytes
Desc: Digital signature
Url : https://lists.ubuntu.com/archives/ubuntu-devel/attachments/20090917/3f86e19f/attachment-0002.pgp
More information about the ubuntu-devel
mailing list