Which packages are critical?
ebenze at hotmail.com
Mon Mar 25 19:00:03 PST 2002
Indeed, that's a really interesting concept. Unfortunately, it can't run
anything out of kernel space, so PPPoE wouldn't work (unless compiled into
the kernel), DHCP, PPP, PPTP, etc... But the concept is definitely there.
Also the lack of logging could also tend to be problematic. It might be an
interesting excercise to try to design the necessary items for such a system
directly into the kernel and thereby completely shut down all user/process
space. Of course, that go contrary to the whole concept of making a kernel
lightweight and simple, but it might be an intereting route to attack....
"Benjamin McGough" <male_it_nerd at yahoo.com> wrote in message
news:20020325173848.37536.qmail at web21206.mail.yahoo.com...
> So check this out (from slashdot.org a few weeks ago):
> It talked about running a firewall using kernel-based IP masquerading
> and/or filtering/routing in a _halted_ state.
> Very cool, but with caveats. Here's how I see it:
> Pros: no software at all (just a kernel), 'perfect security;' no
> processes, no users, no mounted disks, etc... .
> Cons(this is a big one): no logging. That's the main pain. Without
> klogd or syslogd, you don't get logging, and a firewall/router that
> doesn't log is not such a great thing from a security standpoint.
> Also, I don't believe it would respond to dynamic routing changes, so
> it makes a firewall, really, not a router.
> But to answer your question - you can remove all the software! Well,
> you'll need to boot...and shutdown...so init scripts and sysvinit
> package... .
> --- Eric <ebenze at hotmail.com> wrote:
> > Hi,
> > I'm trying to figure out which packages are critical to the system
> > running.
> > I'm trying to build a minimal configuration linux router which does
> > not need
> > make, gcc, vi, etc, etc, etc... However, I'm not sure which packages
> > I can
> > avoid installing, and which ones I need.
> > Does anyone know which are the minimal packages necessary to get an
> > LFS 3.2
> > system network functional?
> > Thanks!
> > Eric
> > --
> > Unsubscribe: send email to listar at linuxfromscratch.org
> > and put 'unsubscribe lfs-support' in the subject header of the
> > message
> Do You Yahoo!?
> Yahoo! Movies - coverage of the 74th Academy Awards®
> Unsubscribe: send email to listar at linuxfromscratch.org
> and put 'unsubscribe lfs-support' in the subject header of the message
Unsubscribe: send email to listar at linuxfromscratch.org
and put 'unsubscribe lfs-support' in the subject header of the message
More information about the lfs-support