From Fedora Project Wiki
Line 39: Line 39:
* Disk usage of "/" mount point is less than 500MB
* Disk usage of "/" mount point is less than 500MB
* Package list is subset of following [[Features/MinimalPlatform/PackageList|package list]]
* Package list is subset of following [[Features/MinimalPlatform/PackageList|package list]]
* List of running services is subset of following [[ServicesList|list of services]]
* List of running services is subset of following [[Features/MinimalPlatform/ServicesList|list of services]]
* List of SUID binaries is subset of following [[SuidList|list of SUID]] binaries
* List of SUID binaries is subset of following [[Features/MinimalPlatform/SuidList|list of SUID]] binaries
* List of SGID binaries is subset of following [[SgidList|list of SGID]] binaries
* List of SGID binaries is subset of following [[Features/MinimalPlatform/SgidList|list of SGID]] binaries


== User Experience ==
== User Experience ==

Revision as of 18:07, 16 February 2009

Features/MinimalPlatform

Summary

Minimal platform will enable user to perform tiny installation. This installation is later used to create minimalistic server or desktop appliance.

Owner

Current status

  • Targeted release: Fedora 40
  • Last updated: (February 13 2009)
  • Percentage of completion: 50%

Detailed Description

The goal of the feature is to provide anaconda option to perform this kind of tiny installation. It would be also very nice to have a kickstart available somewhere(appliance-tools), so it can be used in automated installation.

Benefit to Fedora

  • Security - lower the attack surface by installing only necessary packages
  • Performance - faster installation and less running services
  • Storage - installation is less than 500MB
  • Package dependencies - package dependencies are regularly watched
  • Fedora on servers - encourage users to use Fedora on server and support other distributions based on Fedora like Red Hat Enterprise Linux or CentOS

Scope

  • Regularly perform installations during Fedora cycle and watch for:
    • disk usage
    • packages dependencies
    • running services
    • SUID/SGID binaries
  • Push new package profile into anaconda. This might require support from release engineering and anaconda stuff.

How To Test

There is no need for special hardware to test this feature.

You can use bare metal or virtual environment for installation. Since there is no anaconda option yet, use this kickstart. The kickstart package set covers the @core group plus minimal number of extra packages. The kickstart file includes some security tweaks that are not mandatory for this feature.

What are the expected result?

  • Disk usage of "/" mount point is less than 500MB
  • Package list is subset of following package list
  • List of running services is subset of following list of services
  • List of SUID binaries is subset of following list of SUID binaries
  • List of SGID binaries is subset of following list of SGID binaries

User Experience

Users will have have several options (anaconda/kickstart) to perform minimal platform installation. Their installations will be finished quickly. There will be minimal number of packages after they are ready with customizations. The whole system will be less vulnerable to attack.

Dependencies

  • anaconda
  • comps

Contingency Plan

This feature is not critical. Even if the criteria in test section are not exactly met we can live with that and improve it later. I don't expect any problems with anaconda and comps, but if there are any, we can abandon this way and provide at least the kickstart file in some other package.

Documentation

There is no need for documentation on this feature. I'm gonna provide all the details on this page.

Filed Bugs

Release Notes

  • ToDo!

Comments and Discussion