HOWTO: Read only rootfs, writes to USB on Linux
What you will need:
- Kernel sources for the system you are booting on
- AUFS patches for the kernel
- A USB drive, preferrably one with reasonably fast write speeds
The goal of this excercise is to create a Linux system that has a read-only root filesystem, with all write activites performed on a USB drive. In this instance, we will boot a Raspberry Pi, with the SDcard used as the read only rootfs, and a USB drive used for all file writes (system logs etc.). This is done to improve reliability, as during our access system project, we found that the SDcard can be a bit fragile if the system is reset often.
Read below the fold for more
SELinux Policy Macros: Reference
SELinux add on policy repository
I have created a git repository for my addon SELinux polices for Gentoo at Gitorious.
Right now it includes rules for php-fpm with nginx and unix domain sockets, as previously mentioned, as well as nzbget+nzbgetweb and uwsgi
HOWTO: HostAP (Master) mode for Ralink rt73 USB wifi
Here is how I managed to get my Ralink-based WIFI stick working in access point mode with WPA encryption.
- Hardware used: TP-Link TL-WN321G
- System: Gentoo
Read on for more..
MacGuyvering: Installing a handbrake snapshot on Gentoo
So, you want to encode some video, and run Gentoo, but the handbrake ebuild either doesn't work or is too scary. They only have packages for Ubuntu or Fedora, but don't despair, we can use the Ubuntu package on Gentoo with a bit of detective work.
# Rebuild udev with extras so libgudev is present echo "sys-fs/udev extras" >> /etc/portage/package.use emerge udev # Get the latest handbrake nightly build for ubuntu cd /tmp wget http://ppa.launchpad.net/stebbins/handbrake-snapshots/ubuntu/pool/main/h/handbrake/handbrake-gtk_svn3428ppa1~lucid1_i386.deb ar x handbrake-gtk_svn3428ppa1~lucid1_i386.deb data.tar.bz2 # Extract it cd / tar -jxvf /tmp/data.tar.bz2
The technique of extracting data.tar.gz or data.tar.bz2 out of the .deb will work for other .deb-only binaries you can find as well
Virtualization on Linux without extreme kernel modifications: lxc
There are multiple ways one can run multiple instances of Linux on a server, from entire system virtualization such as VMware, Xen (to a lesser extent) to operating system level virtualization such as UML, OpenVZ and Linux-VServer.
The last three require some kernel magic that isn't in mainline kernels. Linux-VServer (and probably OpenVZ) needs a lot of kernel modification.
Other operating systems ship similar 'containerisation' mechanisms as standard, notably Solaris Containers and FreeBSD jails.