On Sat, 27 Nov 2004 11:30:15 +0100, Terje Fåberg wrote: > (1) initrd creates a new tmpfs > (2) initrd copies the image of the root file-system > minus /usr into that tmpfs > (3) mount /usr from server in read-only mode > (4) initrd pivots to the tmpfs > > This way no data on the server needs to be writable > at all.
The clients will also want to be able to write to /etc/mtab and will probably need to be able to write a few logs in /var/log. Might be worth checking the 'securing debian' howto, that suggests having a read-only local root on systems for security reasons, and probably has notes on how to cope with the few bits that need to be written to (symlinks?). -- Stephen Patterson http://patter.mine.nu/ [EMAIL PROTECTED] remove SPAM to reply Linux Counter No: 142831 GPG Public key: 252B8B37 Caution: breathing may be hazardous to your health. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
