| View previous topic :: View next topic |
| Author |
Message |
Kasumi_Ninja
Veteran
Joined: 18 Feb 2006
Posts: 1825
Location: The Netherlands
|
 Posted: Tue Nov 13, 2007 12:58 pm Post subject: |
 |
|
| Genone wrote: | | Oh, and about your make.conf: Is there a specific reason why you picked that mirror for GENTOO_MIRRORS? Picking a single mirror for something that's supposed to be released to the public generally isn't a good idea. I'd recommend to not set GENTOO_MIRRORS in make.conf so portage will use it's default selection, similar for SYNC where you're just using the default rotation anyway. |
Thanks for your tip  . I changed make.conf accordingly. What about the /dev directory? Is possible to include it in the stage 4?
_________________
Please add [solved] to the initial post's subject line if you feel your problem is resolved. Help answer the unanswered |
|
| Back to top |
|
 |
i92guboj
Bodhisattva
Joined: 30 Nov 2004
Posts: 10315
Location: Córdoba (Spain)
|
| Posted: Tue Nov 13, 2007 2:20 pm Post subject: |
|
|
| Aniruddha wrote: |
Thanks for your tip . I changed make.conf accordingly. What about the /dev directory? Is possible to include it in the stage 4? |
If you want to include a static /dev into your stage, I suppose you can use the one that comes into the gentoo stage3 files. That way you should be on the safe side. |
|
| Back to top |
|
|
Kasumi_Ninja
Veteran
Joined: 18 Feb 2006
Posts: 1825
Location: The Netherlands
|
| Posted: Tue Nov 13, 2007 2:24 pm Post subject: |
|
|
| i92guboj wrote: | | Aniruddha wrote: |
Thanks for your tip . I changed make.conf accordingly. What about the /dev directory? Is possible to include it in the stage 4? |
If you want to include a static /dev into your stage, I suppose you can use the one that comes into the gentoo stage3 files. That way you should be on the safe side. |
Let me if I get this;
1 I install the stage 3
2 When the installation is finished I boot into my new system to test if everything works.
3 I tar the stage 4 and make it publicly available
Or should I refrain from booting into my new system to keep /dev static?
_________________
Please add [solved] to the initial post's subject line if you feel your problem is resolved. Help answer the unanswered |
|
| Back to top |
|
|
i92guboj
Bodhisattva
Joined: 30 Nov 2004
Posts: 10315
Location: Córdoba (Spain)
|
| Posted: Tue Nov 13, 2007 2:42 pm Post subject: |
|
|
As long as I know, the on-disk /dev is not changed when you boot. So, you can boot that system to test it without problems. Once you are done with the tests, you can boot from a livecd (so, the /dev on your stage4 partition is not mounted). That way, you can backup the static dev that is into your hard drive, making sure that no other thing in in the middle.
The dev nodes on the stage3 file should be enough to boot in almost any circumstance, and are well tested, that is why I suggest them as a base. |
|
| Back to top |
|
|
Kasumi_Ninja
Veteran
Joined: 18 Feb 2006
Posts: 1825
Location: The Netherlands
|
| Posted: Tue Nov 13, 2007 5:34 pm Post subject: |
|
|
Great 1! Thanks for the help i92guboj. I can almost start building the stage 4's. There is only (very important) thing left. What is the best way to ensure these stage 4's are delivered untampered? I wast thhinking of gnupg key signing and uploading this gnupg key to a public sever. Is this the best way for endusers to verify if the stage are untampered? Is this the correct way to sign a stage 4 with gnupg?
| Code: |
$ gpg --output doc.gpg --sign --recipient aniruddha@mymail stage4 |
_________________
Please add [solved] to the initial post's subject line if you feel your problem is resolved. Help answer the unanswered |
|
| Back to top |
|
|
hirakendu
Guru
Joined: 24 Jan 2007
Posts: 386
Location: san diego
|
|
| Back to top |
|
|
Kasumi_Ninja
Veteran
Joined: 18 Feb 2006
Posts: 1825
Location: The Netherlands
|
| Posted: Tue Nov 13, 2007 7:26 pm Post subject: |
|
|
| hirakendu wrote: | Is md5sum not enough :p. (Sorry if I am dumb  .) |
Afaik md5sum is very weak. sha5sum should be better. Good questions though, Is there someone who knows if sha5sum provides adequate protection (against tampering)?
Update
md5 is insecure
sha512 is secure
_________________
Please add [solved] to the initial post's subject line if you feel your problem is resolved. Help answer the unanswered |
|
| Back to top |
|
|
NeddySeagoon
Administrator
Joined: 05 Jul 2003
Posts: 54270
Location: 56N 3W
|
| Posted: Tue Nov 13, 2007 8:18 pm Post subject: |
|
|
Aniruddha,
md5sum is fairly easy to create collissions with.
However that alone is not sufficient to undetectably tamper with a package.
The colliding package is must deliver the original functionality, the payload and still provide a collision.
Thats much harder to arannge. Oh, portage checks the file size too, so the rouge file must be the same length as the original.
That set of conditions is much harder to meet simulataiously.
_________________
Regards,
NeddySeagoon
Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail. |
|
| Back to top |
|
|
Kasumi_Ninja
Veteran
Joined: 18 Feb 2006
Posts: 1825
Location: The Netherlands
|
| Posted: Tue Nov 13, 2007 8:18 pm Post subject: |
|
|
I have problems creating an sha512sum. Should I use 'sha512' or the 'sha512sum' command? Which options should I set?
_________________
Please add [solved] to the initial post's subject line if you feel your problem is resolved. Help answer the unanswered |
|
| Back to top |
|
|
Kasumi_Ninja
Veteran
Joined: 18 Feb 2006
Posts: 1825
Location: The Netherlands
|
| Posted: Thu Nov 15, 2007 9:59 am Post subject: |
|
|
I created the first stage 4 yesterday. Compiling xorg failed therefor the stage4-X11 and stage4-Desktop have to wait until this bug is fixed. Here is more info about the 1st stage 4. I left the following configuration settings in it's original state:
Untouched config files
-fstab
-hostname
-confd.net
-/etc/hosts
-passwd (root password isn't set)
-rc.conf
-keymap
-clock
Added
+pcmcia tools
+grub.conf
Removed
-/etc/resolv.conf
Other
Timezone is set to GMT
@Ned
Thanks for the info about md5. Only the stage files (stage3, stage4) aren't checked for size in portage right? Therefor it is better to supply an shasum.
_________________
Please add [solved] to the initial post's subject line if you feel your problem is resolved. Help answer the unanswered |
|
| Back to top |
|
|
Kasumi_Ninja
Veteran
Joined: 18 Feb 2006
Posts: 1825
Location: The Netherlands
|
| Posted: Thu Nov 15, 2007 5:03 pm Post subject: |
|
|
I think of adding the following unstable packages to package.keywords in order to emerge xorg-x11 without problems:
| Code: | x11-drivers/xf86-input-dmc ~x86
x11-base/xorg-server ~x86
x11-libs/pixman ~x86
x11-libs/libXrender ~x86
x11-proto/renderproto ~x86
media-libs/mesa ~x86
x11-proto/inputproto ~x86
x11-libs/libXtst ~x86
x11-apps/xinit ~x86
x11-libs/libXaw ~x86
x11-libs/libXpm ~x86
x11-libs/libX11 ~x86
x11-proto/xf86dgaproto ~x86
x11-libs/xtrans ~x86
x11-libs/libXfont ~x86
x11-libs/libXi ~x86
x11-drivers/xf86-input-keyboard ~x86 |
Update
That didn't go to well... I'll think it's better to remove dmc from make.conf until this bug is fixed.
_________________
Please add [solved] to the initial post's subject line if you feel your problem is resolved. Help answer the unanswered |
|
| Back to top |
|
|
Kasumi_Ninja
Veteran
Joined: 18 Feb 2006
Posts: 1825
Location: The Netherlands
|
| Posted: Fri Nov 16, 2007 9:42 pm Post subject: |
|
|
Well the stag4's are finished! And they even work  . I am am buildinga chroot in /var/chroot now to give them a permanent place for updating and maintenance. The only obstacle now is how to distribute these stage 4's (I am thinking of bittorrent. And I am still trying to figure out the correct way to create an sh5sum. Here is the to be included install and changelog files, the chapter number and title correspond with the Gentoo Linux x86 Handbook Let me know what you think!
| Code: | 4. Preparing the Disks
# mke2fs -j /dev/hda3
# mkswap /dev/hda2
# swapon /dev/hda2
Optional: Optimize ext3
(see http://forums.gentoo.org/viewtopic-t-305871-highlight-ext3+optimize+optimize.html )
# tune2fs -O dir_index /dev/hda3
# e2fsck -D /dev/hda3
# tune2fs -O has_journal -o journal_data /dev/hda3
# tune2fs -c 0 -i 0 /dev/hda3
# mount /dev/hda3 /mnt/gentoo
5. Installing the Gentoo Installation Files
# tar xvjpf stage4*
6. Installing the Gentoo Base System
# cp -L /etc/resolv.conf /mnt/gentoo/etc/
# mount -t proc none /mnt/gentoo/proc
# mount -o bind /dev /mnt/gentoo/dev
# chroot /mnt/gentoo /bin/bash
# env-update
# source /etc/profile
# export PS1="(chroot) $PS1"
# emerge --sync
7. Configuring the Kernel
# ls /usr/share/zoneinfo
# cp /usr/share/zoneinfo/GMT /etc/localtime
8. Configuring your System
# nano -w /etc/fstab
# nano -w /etc/conf.d/hostname
# nano -w /etc/conf.d/net
# nano -w /etc/hosts
# passwd
# nano -w /etc/rc.conf
# nano -w /etc/conf.d/keymaps
# nano -w /etc/conf.d/clock
10. Configuring the Bootloader
# nano -w /boot/grub/grub.conf
# grep -v rootfs /proc/mounts > /etc/mtab
# grub-install --no-floppy /dev/hda
11. Finalizing your Gentoo Installation
# useradd -m -G audio,cdrom,portage,usb,users,plugdev,video,wheel -s /bin/bash john
# passwd john
10.d. Rebooting the System
# exit
# cd
# umount /mnt/gentoo
# shutdown -hP now |
| Code: | Changelog_stage4-x86-2007.0_X11
# rm /etc/resolv.conf
# emerge xorg-x11
# env-update
# source /etc/profile
Missing options in xorg-x11
-dmc
-citron
-dynapro
-penmount
-microtouch
-calcomp
-elo2300
-fglrx
-nvidia |
| Code: | Changelog_stage4-x86-2007.0_KDE
# rm /etc/resolv.conf
# emerge xorg-x11
# env-update
# source /etc/profile
# emerge -av kde-meta
# emerge -C udev && emerge device-mapper udev
# emerge --ask dbus hal
# rc-update add dbus default
# rc-update add hald default
Missing options in xorg-x11
-dmc
-citron
-dynapro
-penmount
-microtouch
-calcomp
-elo2300
-fglrx
-nvidia |
_________________
Please add [solved] to the initial post's subject line if you feel your problem is resolved. Help answer the unanswered |
|
| Back to top |
|
|
logigamer
n00b
Joined: 27 Oct 2007
Posts: 17
|
| Posted: Thu Nov 22, 2007 10:53 am Post subject: |
|
|
| when You will be ready to release this stages? |
|
| Back to top |
|
|
Kasumi_Ninja
Veteran
Joined: 18 Feb 2006
Posts: 1825
Location: The Netherlands
|
| Posted: Thu Nov 22, 2007 10:59 am Post subject: |
|
|
| logigamer wrote: | | when You will be ready to release this stages? |
Actually I am ready . But to be honest I don' have a clue how to distribute them. I am still thinking about bittorrent, but where do I upload the torrent files? And I have look into a good torrent creator.
_________________
Please add [solved] to the initial post's subject line if you feel your problem is resolved. Help answer the unanswered |
|
| Back to top |
|
|
logigamer
n00b
Joined: 27 Oct 2007
Posts: 17
|
| Posted: Thu Nov 22, 2007 11:18 am Post subject: |
|
|
| Aniruddha wrote: | | logigamer wrote: | | when You will be ready to release this stages? |
Actually I am ready . But to be honest I don' have a clue how to distribute them. I am still thinking about bittorrent, but where do I upload the torrent files? And I have look into a good torrent creator. |
nice!!!
maybe this one??
http://www.mininova.org/upload
| Quote: | | If you don't know how to make a torrent file, check your client documentation or use Bitlet or MakeTorrent. |
Im not good with uploading torrents too :/ |
|
| Back to top |
|
|
ryker
Guru
Joined: 28 May 2003
Posts: 412
Location: Portage, IN
|
| Posted: Thu Nov 22, 2007 2:56 pm Post subject: |
|
|
Or Linux Tracker
http://linuxtracker.org/
_________________
Athlon 64 3200+, 80G WD sata hd + 200G IDE, 1G Geil DDR400, MSI K8T Neo
IntelCore2Duo 2.0Ghz MSI laptop,100G SATA hd, 2G RAM |
|
| Back to top |
|
|
neiljw
Apprentice
Joined: 12 Nov 2007
Posts: 166
Location: Telford, UK
|
| Posted: Thu Nov 22, 2007 9:03 pm Post subject: |
|
|
| Aniruddha wrote: | | logigamer wrote: | | when You will be ready to release this stages? |
Actually I am ready . But to be honest I don' have a clue how to distribute them. |
I have a barely-used server with 100Mb/s bandwidth and 500GB/month transfer. I could host the files if you like.
_________________
Be lucky,
Neil |
|
| Back to top |
|
|
logigamer
n00b
Joined: 27 Oct 2007
Posts: 17
|
| Posted: Fri Nov 23, 2007 11:42 am Post subject: |
|
|
| so, we should wait? |
|
| Back to top |
|
|
Kasumi_Ninja
Veteran
Joined: 18 Feb 2006
Posts: 1825
Location: The Netherlands
|
| Posted: Fri Nov 23, 2007 4:35 pm Post subject: |
|
|
| neiljw wrote: | | Aniruddha wrote: | | logigamer wrote: | | when You will be ready to release this stages? |
Actually I am ready . But to be honest I don' have a clue how to distribute them. |
I have a barely-used server with 100Mb/s bandwidth and 500GB/month transfer. I could host the files if you like. |
That sounds great! Maybe I can even tempt you to host Gentoo binary files? 
| logigamer wrote: | | so, we should wait? |
Yep  . I'll try to finish them this weekend (compiling stage4 desktop right now) and I also need to document the changes. Thus far I have:
Stage4
Stage4 with X11
Stage4 with KDEbase
Stage Desktop with lots of stuff
_________________
Please add [solved] to the initial post's subject line if you feel your problem is resolved. Help answer the unanswered |
|
| Back to top |
|
|
neiljw
Apprentice
Joined: 12 Nov 2007
Posts: 166
Location: Telford, UK
|
| Posted: Fri Nov 23, 2007 9:08 pm Post subject: |
|
|
| Aniruddha wrote: | | That sounds great! Maybe I can even tempt you to host Gentoo binary files? |
You will have full upload capabilities so you can put anything you like connected with this project on there. I'll PM you with the account details so you can start uploading when you are ready.
_________________
Be lucky,
Neil |
|
| Back to top |
|
|
Kasumi_Ninja
Veteran
Joined: 18 Feb 2006
Posts: 1825
Location: The Netherlands
|
| Posted: Fri Nov 23, 2007 9:13 pm Post subject: |
|
|
| neiljw wrote: | | Aniruddha wrote: | | That sounds great! Maybe I can even tempt you to host Gentoo binary files? |
You will have full upload capabilities so you can put anything you like connected with this project on there. I'll PM you with the account details so you can start uploading when you are ready. |
Thanks a lot! This great news 
_________________
Please add [solved] to the initial post's subject line if you feel your problem is resolved. Help answer the unanswered |
|
| Back to top |
|
|
Kasumi_Ninja
Veteran
Joined: 18 Feb 2006
Posts: 1825
Location: The Netherlands
|
| Posted: Fri Nov 23, 2007 10:04 pm Post subject: |
|
|
Neil just send me a the account details I expect to upload the first stage4's tomorrow .
_________________
Please add [solved] to the initial post's subject line if you feel your problem is resolved. Help answer the unanswered |
|
| Back to top |
|
|
Kasumi_Ninja
Veteran
Joined: 18 Feb 2006
Posts: 1825
Location: The Netherlands
|
| Posted: Sun Nov 25, 2007 11:24 am Post subject: |
|
|
I have had some delay, I'll let you know when I upload the first stage4's.
_________________
Please add [solved] to the initial post's subject line if you feel your problem is resolved. Help answer the unanswered |
|
| Back to top |
|
|
logigamer
n00b
Joined: 27 Oct 2007
Posts: 17
|
| Posted: Sun Nov 25, 2007 11:52 am Post subject: |
|
|
| Aniruddha wrote: | | I have had some delay, I'll let you know when I upload the first stage4's. |
hours or days?
good luck! |
|
| Back to top |
|
|
neiljw
Apprentice
Joined: 12 Nov 2007
Posts: 166
Location: Telford, UK
|
| Posted: Sun Nov 25, 2007 3:25 pm Post subject: |
|
|
Sorry folks, the delay has been my fault. I had a couple of typos in the setup for aniruddha's account. It's all sorted now.
_________________
Be lucky,
Neil |
|
| Back to top |
|
|
|
Unsupported Software
