On Tue, 24 Aug 2004 04:49, Jeremy Katz <katzj@xxxxxxxxxx> wrote: > > One option would be to use an ext2 file system on a ram disk for udev. > > It would do all the same stuff as ramfs (at a slightly higher memory > > cost) and work perfectly with SE Linux. > > It has a number of other, not really desired side effects as well. > 1) Kernel people don't really like ramdisks anymore > 2) Doing this requires mke2fs in the initramfs. Bleah. > 3) It puts an artificial cap on the size of your /dev that then has to > be adjustable. And the cap is related to an overhead of memory usage. > This is ugly to get "right" I agree that ext2 is not a long-term solution to this problem. However at the moment we have a default configuration that's grossly broken with regard to SE Linux. If you upgrade a machine which runs the "targeted" policy to rawhide then several important daemons (including syslogd) stop working. If you upgrade a machine which runs the "strict" policy then it will fail to boot. If we were unable to get ramfs working in a reasonable amount of time then ext2 would be a good option to consider IMHO. -- http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark http://www.coker.com.au/postal/ Postal SMTP/POP benchmark http://www.coker.com.au/~russell/ My home page
