Dirk Heinrichs wrote: > Am Samstag, 9. Mai 2009 12:20:46 schrieb Stroller: > > >>> This is Gentoo, so you as the user define the rules. And for _me_, >>> it definitely >>> _is_ a rule. >>> >> Could you possibly explain why, please? >> > > Because it eliminates the need for an initramfs (which I used until a few > weeks ago), even if you've got your / on an encrypted logical volume. I > simply > put just enough userspace tools into /boot to be able to create the dmcrypt > mapping and mount the real root fs, then run pivot_root and /sbin/init. > > So in the end it's the same than using an initramfs, but with less hassle. > And > for consistency reasons, I also use this scheme on every machine. > > Bye... > > Dirk >
Wasn't there a security reason for this setup at one time? If you put /boot on a separate partition, then the only time it needed to be mounted was to update the kernel or edit grub/lilo. That was what I was reading when I installed Gentoo oh so many ages ago. Is this still true? Dale :-) :-)
