Re: NFS rooting current root

[Andrew Cady]

On Thu, Jan 12, 2006 at 09:21:29PM +0100, Lukas Ruf wrote:
> Dear all,
> 
> are there any opinions on risks and benefits of exporting my
> server root (/boot, /etc, /usr, /dev, /sys) read-only to the
> client that provides just /var and does an nfsroot mount of
> the read-only exported one??
> 
> Thanks for any hands-on experience hints.

I've done this before.  Unfortunately debian doesn't like a read-only
root.  The way I made it work was to mount --bind read-write copies of
all the files on root that needed to be rw, or the files I just needed
to be different on the client than the server, very early in the boot
process.  After that it worked, except that NFS randomly died so much I
gave up on it.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Re: NFS rooting current root

[Laurent CARON]

Lukas Ruf a écrit :

Dear all,

are there any opinions on risks and benefits of exporting my
server root (/boot, /etc, /usr, /dev, /sys) read-only to the
client that provides just /var and does an nfsroot mount of
the read-only exported one??

Thanks for any hands-on experience hints.

wbr,
Lukas


Hi,

exporting /etc without no_root_squash means being able to read 
/etc/passwd and /etc/shadow among other from the remote server..



--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

NFS rooting current root

[Lukas Ruf]

Dear all,

are there any opinions on risks and benefits of exporting my
server root (/boot, /etc, /usr, /dev, /sys) read-only to the
client that provides just /var and does an nfsroot mount of
the read-only exported one??

Thanks for any hands-on experience hints.

wbr,
Lukas
-- 
Lukas Ruf    | Ad Personam
rbacs   | Restaurants, Bars and Clubs
Raw IP    | Low Level Network Programming
Style   | How to write emails


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED] 
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]