On Thu, Aug 30, 2012 at 01:02:39AM +0200, Michael Biebl wrote: > On 30.08.2012 00:31, Peter Samuelson wrote: > > > > [Russ Allbery] > >> All PAM modules are installed under /lib, because that's the path > >> used by libpam to load them. However, I don't think the vast > >> majority of PAM modules could be considered critical for early boot > >> or need to be usable without /usr mounted > > > > It seems pam already looks in both /lib/security and > > /lib/{triplet}/security. > > Why not add /usr/lib/{triplet}/security to the mix? > > Imho moving pam modules around is just wasted (maintainer) time. > A much more sensible approach is to just lift the /-vs-/usr restriction. > The obvious way is to not use a separate /usr anymore or simply mount > /usr via the initramfs. > > Wasn't there a patch for initramfs-tools floating around doing that?
I started looking into it while doing the /run-in-initramfs stuff last year, but didn't get anything working at the time--initramfs- tools needs refactoring to remove the assumption that only one filesystem will be mounted, before we can mount /usr as well (and also maybe /etc). There was also the question about where the information for mounting /usr should come from; IIRC at the time we opted to use /etc/fstab from the rootfs, so that only the location of the rootfs needs passing to the initramfs. While I ran out of time back then for doing this (finishing my PhD), it's definitely something I'd like as a release goal for jessie. If the initramfs-tools maintainers won't have time for it, I can certainly look into this further. Regards, Roger -- .''`. Roger Leigh : :' : Debian GNU/Linux http://people.debian.org/~rleigh/ `. `' schroot and sbuild http://alioth.debian.org/projects/buildd-tools `- GPG Public Key F33D 281D 470A B443 6756 147C 07B3 C8BC 4083 E800 -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20120829231144.gf20...@codelibre.net