I'm currently a contractor, working for/with Dyn, until April the 11th.
I need to decide what I'm doing next, if anything. In the meantime here are some diversions:
- Some trivial security issues
-
I noticed and reported two more temporary-file issues insecure temporary file usage in apt-extracttemplates (apt), and libreadline6: Insecure use of temporary files - in _rl_trace.
Neither of those are particularly serious, but looking for them took a little time. I recently started re-auditing code, and decided to do three things:
- Download the source code to every package installed upon this system.
- Download the source code to all packages matching the pattern ^libpam-, and ^libruby-*.
I've not yet finished slogging through the code, but my expectation will be a few more issues. I'll guess 5-10, given my cynical nature.
- NFS-work
-
I've been tasked with the job of setting up a small cluster running from a shared and writeable NFS-root.
This is a fun project which I've done before, PXE-booting a machine and telling it to mount a root filesystem over NFS is pretty straight-forward. The hard part is making that system writeable, such that you can boot and run "apt-get install XX". I've done it in the past using magic filesystems, or tmpfs. Either will work here, so I'm not going to dwell on it.
- Another year
-
I had another birthday, so that was nice.
My wife took me to a water-park where we swam like fisheseses, and that tied in nicely with a recent visit to Deep Sea World, where we got to walk through a glass tunnel, beneath a pool FULL OF SHARKS, and other beasties.
Beyond that I received another Global Knife, which has now been bloodied, since I managed to slice my finger open chopping mushrooms on Friday. Oops. Currently I'm in that annoying state where I'm slowly getting used to typing with a plaster around the tip of my finger, but knowing that it'll have to come off again and I'll get confused again.
- Linux Distribution
-
I absolutely did not start working on a "linux distribution", because that would be crazy. Do I look like a crazy-person?
All I did was play around with GNU Stow, and ponder the idea of using a minimal LibC and GNU Stow to organize things.
It went well, but the devil is always in the details.
I like the idea of a master-distribution which installs pam, ssh, etc, but then has derivitives for "This is a webserver", "This is a Ruby server", and "This is a database server".
Consider it like task-selection, but with higher ambition.
There's probably more I could say; a new kitchen sink (literally) and a new tap have made our kitchen nicer, I've made it past six months of regular gym-based workouts, and I didn't die when I went to the beach in the dark the other night, so that was nice.
Umm? Stuff?
Have a nice day. Thanks.
Tags: misc, nfs, security 2 comments
http://www.steve.org.uk/
Thanks for the pointer to Bedrock Linux, I've not actually gone out of my way to look at other distros yet.
I was just toying around with building musl-libc and using that to bootstrap monit, dash, and sshd.
The thing that makes a distribution hard is obviously the maintenance of the packages, and handling updates/upgrades. Both of those would be huge time-sinks, so I suspect it'll just remain a minor diversion rather than a serious project.