clone 249305 -1 -2 reassign -1 base-config retitle -1 Don't execute stuff in /tmp directly severity -1 wishlist reassign -2 debian-cd retitle -2 offer rescue option severity -2 wishlist thanks
* Mika Bostrom <[EMAIL PROTECTED]> [2004-05-16 19:11]: > As marked with '**' above, there are certain issues with partitioning. > First, it is not exactly intuitive - the rest of the install is. > Secondly, a person doing a relatively secure install will find himself > shot on the foot. I chose mount options for /tmp: nodev,nosuid,noexec > this was a bad idea. > > After boot, installer tries to execute the actual system install. For > this, a script stored in /tmp is used. At the end of boot, the script > can't execute because of noexec. There are some errors and then init > will try to sleep. There is relatively little to do at this point. > > That was the first bug with partitioning. Solution would be to call > the second stage installer always with /bin/sh, not trying to execute it > directly. Thanks for spotting this. base-config (or whatever it is that is executing stuff in /tmp) should either not do that, or partman should not offer the noexec flag for /tmp if that's not possible. Mika, after rebooting, did you not get anything at all (i.e was the first program started from /tmp) or did that happen later? > There was another issue with installer that I discovered because of > this. The installer (or its current revision at least) can not be used > as a rescue media. This is not the issue, but it caused the real > discovery. Yeah, I really want a rescue option, too. It should simply load a kernel from the CD, and _not_ load the initrd, so people can append a root= argument and boot from disk. > Trying to do a reinstall: I was happy with the partition layout and > wouldn't have wanted to set it again; only wanted to remove the noexec > flag from /tmp. This proved to be impossible. The partitioning menu, > when faced with existing layout and filesystems, only displays three > selections. Editing the partition and its options is not one of them. (I Hmm, I don't understand. When you enter the partitioning tool, it should offer "manual partitioning". If you choose that, then you should see your existing partitions, and be able to assign mount points. Did that not work? Or do you mean something else? > There is one final issue with second stage of install. Setting up the > packages winds up in an error. Hitting enter on "Install selected Do you know which package generates an error? -- Martin Michlmayr [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
