1305851679 Q * hparker Quit: Quit 1305852181 J * hparker ~hparker@2001:470:1f0f:32c:beae:c5ff:fe01:b647 1305860791 Q * hparker Quit: Quit 1305861507 J * hparker ~hparker@2001:470:1f0f:32c:beae:c5ff:fe01:b647 1305862396 Q * hparker Quit: Quit 1305867250 N * Bertl_zZ Bertl_oO 1305867930 J * ghislain ~AQUEOS@adsl2.aqueos.com 1305873600 Q * aj__ Ping timeout: 480 seconds 1305875321 M * josef_ Hi, is there some smart way of mounting the root filesystem as read-only in a vserver? 1305875341 M * josef_ (I still want it read-write on the host) 1305875563 M * josef_ Actually, as I realize, it's not necessary to have it read-write on the host. 1305876603 Q * Piet Remote host closed the connection 1305876649 J * Piet ~Piet__@82VAABNWF.tor-irc.dnsbl.oftc.net 1305876714 J * aj__ ~aj@213.238.45.2 1305876998 Q * fback Ping timeout: 480 seconds 1305877194 M * josef_ The vserver did _not_ like me when I made the directory on the host read-only ;) 1305878023 M * cehteh josef_: iirc readonly bind mounts work meanwhile 1305878034 M * cehteh (i mean since a few years :)) 1305878089 J * fback fback@red.fback.net 1305878630 M * josef_ cehteh, does that really work? I get alot of "WARNING: '/etc/vservers/vs006/vdir/usr/lib/libldap_r-2.4.so.2.5.6' does not end on newline" when mounting the vdir with --bind. 1305879400 M * josef_ Oh, FYI, nfs with IPv6 support exist in debian wheeze, but as there is not vserver-kernel yet, it's not usable :p 1305879490 M * cehteh josef_: add a newline 1305882177 Q * fback Ping timeout: 480 seconds 1305883275 J * fback fback@red.fback.net 1305883595 J * DoberMann ~james@2a01:e35:8b44:84c0::2 1305884340 M * Bertl_oO josef_: you want to make sure that the distro installed inside the guest can handle read-only 1305884422 M * josef_ Bertl_oO, like going through every init.d-script. What I've done is to make run/lock tmpfs and log a mounted fs. But I should also do a lsof to see if there's more going on. 1305884452 M * josef_ Have taken myself into a dark corner atm, so I'll redo everything.. and document! 1305888550 A * cehteh still hopes for union mount in the kernel ... duh 1305888579 M * cehteh unionfs sux, aufs is bloat, the fuse union FS' are conceptually flawed 1305892040 M * Bertl_oO why not go for unification :) 1305892483 M * josef_ Bertl_oO, I want a template system, where I change the template for the vserver, as I see it, unification would be quite troublesome. 1305892540 M * josef_ And a template system where I can point the root-directory to some other place is much leaner on the system and on the structure, and updates. 1305893044 M * arekm .40 or .41 should have overlayfs 1305893078 M * Bertl_oO which doesn't really help in his case 1305893143 Q * LuckyLuke Ping timeout: 480 seconds 1305893400 J * TheSeer ~theseer@border.office.ballyhoo.de 1305893408 M * TheSeer heya :) 1305893658 J * LuckyLuke ~luca@host65-83-static.228-95-b.business.telecomitalia.it 1305893873 Q * aj__ Ping timeout: 480 seconds 1305895580 J * hparker ~hparker@2001:470:1f0f:32c:beae:c5ff:fe01:b647 1305897429 J * Piet_ ~Piet__@82VAABN04.tor-irc.dnsbl.oftc.net 1305897601 N * Piet Guest1627 1305897601 N * Piet_ Piet 1305897825 Q * Guest1627 Ping timeout: 480 seconds 1305900149 M * josef_ Ok, so even if I mount the disk read-only with bind, vserver bind the root-device against the original source. 1305900169 M * josef_ Alas making it writeable, and even if the folders are read-only, it possible to write in them. 1305900190 M * josef_ It feels like it should be an option somewhere to mount root as read-only. 1305900272 J * derjohn_mob aj@tmo-014-109.customers.d1-online.com 1305902618 Q * derjohn_mob Ping timeout: 480 seconds 1305902630 J * derjohn_mob aj@80.187.193.105 1305903683 J * dowdle ~dowdle@scott.coe.montana.edu 1305903701 Q * ncopa Quit: Leaving 1305907893 Q * _nono_ Read error: Connection reset by peer 1305910114 Q * TheSeer Quit: Client exiting 1305911408 Q * derjohn_mob Ping timeout: 480 seconds 1305912947 Q * ghislain Quit: Leaving. 1305918488 Q * FireEgl Read error: No route to host 1305918615 Q * dowdle Remote host closed the connection 1305919642 J * dowdle ~dowdle@153.90.197.59 1305919783 J * dowdle_ ~dowdle@scott.coe.montana.edu 1305919851 Q * dowdle_ Remote host closed the connection 1305919889 J * dowdle_ ~dowdle@scott.coe.montana.edu 1305920083 Q * dowdle_ Remote host closed the connection 1305920100 J * dowdle_ ~dowdle@scott.coe.montana.edu 1305920183 Q * dowdle Ping timeout: 480 seconds 1305924585 J * bonbons ~bonbons@2001:960:7ab:0:c9aa:db47:59cb:972c 1305926792 Q * ignaz Ping timeout: 480 seconds 1305926914 J * derjohn_mob ~aj@p578EFD69.dip.t-dialin.net 1305928054 Q * FIChTe Quit: bashpipe 1305928087 J * FIChTe ~fichte@bashpipe.de 1305929482 M * Bertl_oO off to bed now ... have a good one everyone! 1305929487 N * Bertl_oO Bertl_zZ 1305929757 J * ensc ~irc-ensc@p5DF2BDAC.dip.t-dialin.net 1305932975 Q * bonbons Quit: Leaving 1305933744 Q * dowdle_ Remote host closed the connection 1305934491 J * FireEgl FireEgl@2001:470:e056:1:7498:c370:34b5:3a72