On Fri, Feb 11, 2022 at 12:06 PM Simone Piccardi via lpi-examdev < [email protected]> wrote:
> On 09/02/22 20:10, Fabian Thorns via lpi-examdev wrote: > > The page already contains some future change considerations, including > > some contents that will likely be removed from the exam. But please > > feel free to bring up *any* aspect you’d like to discuss. This > > explicitly includes weight changes if you feel some topics should be > > tested at another level. > > Just some suggestions: > In 201.2: should we remove bzip2 ? > In 206.1: should we remove bzip2 ? > I'm not following. Many vendors and even some distributions still use the BWT (bzip2) algorithm, in addition to LZMA (xz) and, when speed/small decompress code in the loader/firmware (e.g., embedded applications) is of the essence more than kernel size, LZ77-LZO (lzop) and LZ77-LZ4 (p7z**). Modern kernels support all these. So if we're going to drop BWT (bzip2), then let's nuke it all ... at least for the kernel objective. Otherwise, we should expand beyond just LZ77 (gzip) and BWT (bzip2), and put in the whole lot ... - LZMA (xz) and LZ77 alternatives to gzip, like ... - LZO (lzop) - LZ4 (p7z**) Dang, I didn't realize BTW (bzip2) was under consideration for removal from kernel compression support. Has it been removed? Quick Google. [1] I still think it's too commonly used to remove it from the 206.1 objective though. > In 206.2: adding awareness of attic or borgbackup? > Updated market survey due perhaps, if an option/time allows? I can think of a dozen. In 208.1: is mod_perl still relevant? > Definitely up for discussion ... market survey? > In 208.1: add http2 configuration > How much do we want to get into IETF RFC7540, or even RFC9000/9001 (HTTP/3) for that matter? > In 212.3: what about SSH CA ? what about SFTP chrooted configuration ? > Oh, beyond just CA ... a lot of companies are now using 2-way certificates for authentication, or possibly as part of MFA. And a lot of proprietary/hosted vendors are using their certificate systems, to leverage the support for the support built-in -- not that I advocate using proprietary/hosted vendors, but they are using the open standard/support for open standard certicates. I think it's been around a long time, 5.7 or so, in OpenSSH ... checking ... yes, 5.7+, confirmed, a good decade ago too. [2] And about VPN, not mentioned in the exam, I think at least awareness of > wireguard should be added. > Another to note for a market survey? - bjs **P.S. US Government Note (just for those others who will probably bring it up too), 7-zip (p7z) has pretty much been nuked from being allowed in US systems under DoD-DISA STIG, DoD CMMC and, most of all, NIST 800-171/172 ... which affects any federal contractors -- not just DoD, although it does involve anything that now falls under CUI, which is basically every IT system -- because it's origins are not desired. It's in EPEL and not RHEL, for example, for this reason. But I'm fine with LZ4 still being in the Objectives, for awareness reasons. The US/EU/West doesn't control the entire world. REFERENCES: [1] [RFC PATCH] treewide: remove bzip2 compression support - https://lore.kernel.org/lkml/[email protected]/ [2] OpenSSH 5.7 was released on 2011-01-24 - https://www.openssh.com/txt/release-5.7 -- Bryan J Smith - http://www.linkedin.com/in/bjsmith E-mail: b.j.smith at ieee.org or me at bjsmith.me
_______________________________________________ lpi-examdev mailing list [email protected] https://list.lpi.org/mailman/listinfo/lpi-examdev
