Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 26 Mar 2012 06:42:09 +0000
From: Zenny <garbytrash@...il.com>
To: owl-users@...ts.openwall.com
Cc: Solar Designer <solar@...nwall.com>
Subject: Re: Customizing Owl to fit in a small sized USB Stick or CF

On 3/26/12, Solar Designer <solar@...nwall.com> wrote:
> Hi Zenny,
>
> On Sun, Mar 25, 2012 at 08:43:41PM +0000, Zenny wrote:
>> I would like to know if there are scripts to cutomize/minimize the Owl
>> to fit into a small sized USB stick or CF (something like voyage
>> linux) without any overheads of the extra libraries?
>
> I am not aware of existing scripts to do that, yet it is fairly easily
> done by editing installorder.conf or/and by removing some packages after
> install.  A good start is setting the SKIP_EXTRA=yes environment
> variable for your "make installworld" run.  This will skip packages
> prefixed with "E:" in installorder.conf (there are currently only a few
> of those, though).  Then you may "rpm -e" all packages with "-devel" in
> their names, or you may have removed them from installorder.conf.  All
> "-doc" packages are marked "E:", so if you did the SKIP_EXTRA=yes thing,
> then you don't need to remove them manually, but if you did not, you may.
> Now, without "-devel" a few other packages no longer make sense - most
> notably, you may want to remove gcc and likely its prerequisites (see the
> installorder.conf line with gcc on it), kernel-headers, and maybe also
> things like bison, flex, make.  Maybe we should add support for a
> SKIP_DEVEL setting to make this easier, although the development vs. not
> split is not exact (it varies by person and intended use for the system -
> e.g., is m4 a development tool only or also a sysadmin tool?)  Oh, and
> we're already using both "D:" and "d:" (for different other things), so
> I'm not sure what the new single-letter prefix corresponding to
> SKIP_DEVEL should be (maybe "V"). ;-)

Thanks for the detailed explanation. Very saturating!

Actually, I was expecting some script equivalent to NanoBSD (you know
what I meant) in Owl which can produce CF images like voyage linux,
based on debian-live, for 32- and 64-bit archs. Is there something in
the making?

>
>> Besides, is there a brief description of rebuilding kernel? The one
>> that is found in the wiki seems to have been not updated for a long
>> time. Thanks!
>
> Yet the description on the wiki is up to date, except only for the
> ever-changing version numbers.
>
> http://openwall.info/wiki/Owl/kernel-build

Thank you, enjoyed reading and try to do something and report back.
Thanks for the great security work that Owl team is doing, making
GNU/Linux as secure as OpenBSD! :D

/z

>
> Alexander
>

Powered by blists - more mailing lists

Your e-mail address:

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.