/usr can be mounted ro by moving all variable stuff to /var. This is standard practice on embedded systems, and is also standard practice on any unix system whose authors actually remember the meaning and purpose of /var.
Sent from ProtonMail Mobile On Sun, Oct 29, 2017 at 19:00, Theo de Raadt <dera...@openbsd.org> wrote: >> > On Sun, Oct 29, 2017 at 12:32:58PM +0100, Marko Cupa?? wrote: > > > I know >> > read-only setups are unsupported, modifying base files as > > > well, but >> > if someone has an advice on what would be a better way of > > > remounting >> > local file systems read-only after kernel relinking is done, > > > I'd be >> > grateful. > > You can use rc.local(8). > > Not really and btw. the OP uses >> > it already. > The kernel relinking happens at the end of rc in the >> > background. > rc.local is run before. OP has all the pieces. Once you >> > start on your own road, noone else can really help.
