| View previous topic :: View next topic |
| Author |
Message |
atmat
n00b
Joined: 23 Aug 2005
Posts: 7
|
 Posted: Tue Aug 23, 2005 12:47 pm Post subject: Turn a bloated Gnome Desktop system into a hardened server! |
 |
|
Hello.
I am trying to turn my ex-desktop system into a Gentoo hardened server without formatting anything. I started with changing my use flags at /etc/make.conf and then grabbing the installed pkg's list gia qpkg -I|more and I started unemerging one by one (using some awk n sed to speed up the process).. Now I installed lot's of pkgs I had 670 installed at the beggining (a lot! I know  ). Now I'm to 489, when I type emerge -uDpv world I get packages like xorg and other X-related in the list.. is there any "automated" way to complete the entire process? I now that this is because there are some pkg's that are installed and need xorg to work properly, but If you know any way to avoid the manuall work that needs to be done here, please help!!! 
thnx |
|
| Back to top |
|
 |
frary
Guru
Joined: 27 Jan 2004
Posts: 545
|
| Posted: Tue Aug 23, 2005 1:31 pm Post subject: |
|
|
Manually? As far as I got, you try to remove packages that you do not need on a server...?
If so, just comment them out ( /var/lib/portage/world ) and run
| Code: | | emerge -pv depclean |
.
But look carefully, sometimes this wipes essential packages ( had it once...).
Run after the depclean to fix broken dependencies.
If I got your question right, this should be the answer...
T
_________________
Mitleid bekommt man geschenkt;
Neid muss man sich hart erarbeiten!
I.Walter |
|
| Back to top |
|
|
nevynxxx
Veteran
Joined: 12 Nov 2003
Posts: 1123
Location: Manchester - UK
|
| Posted: Tue Aug 23, 2005 1:36 pm Post subject: |
|
|
The easier way to be careful, would be to run emerge -pv depclean. Make sure there is nothing on the list you want to keep, then comment out the lines in world of packages you no longer want and run emerge -pv depclean again.,
That way you will get a shorter list to check over the first time.
You should still check the list the second time, but shouldn't have to bee as carefull.
If you do remove somthing and some app throws a fit, just re-emerge the app that fits, that should pull in the dependancy you have accidentally removed.
_________________
My Public Key
Wanted: Instructor in the art of Bowyery |
|
| Back to top |
|
|
neuron
Advocate
Joined: 28 May 2002
Posts: 2371
|
| Posted: Tue Aug 23, 2005 3:56 pm Post subject: |
|
|
| what I'd do is emerge -C xorg, then do revdep-rebuild -p and remove basically all packages depending on X. |
|
| Back to top |
|
|
atmat
n00b
Joined: 23 Aug 2005
Posts: 7
|
| Posted: Wed Aug 24, 2005 8:18 am Post subject: |
|
|
okay, I did some work, and updates and emerge's and now.. I did rsync and want to upgrade the system. Although I tried to set up things properly when I type emerge -uDpv world I get these packages too:
| Quote: |
[ebuild N ] x11-misc/ttmkfdir-3.0.9-r3 0 kB
[ebuild N ] x11-base/xorg-x11-6.8.2-r2 -3dfx -3dnow -bitmap-fonts -cjk -debug -dlloader -dmx -doc -font-server -insecure-drivers -ipv6 -minimal -mmx +nls -nocxx -opengl +pam -sdk -sse -static -truetype-fonts -type1-fonts (-uclibc) -xprint -xv 0 kB
[ebuild N ] x11-terms/xterm-204 -Xaw3d -toolbar -truetype +unicode 0 kB
|
and I can't understand why?! revdep-build works okay. I don't have x11 related flags.. how can I find which pkg's are calling x11-related applications?! |
|
| Back to top |
|
|
rex123
Apprentice
Joined: 21 Apr 2004
Posts: 272
|
| Posted: Wed Aug 24, 2005 8:38 am Post subject: |
|
|
| The --tree switch to emerge can be useful in tracing dependencies. |
|
| Back to top |
|
|
atmat
n00b
Joined: 23 Aug 2005
Posts: 7
|
| Posted: Wed Aug 24, 2005 9:28 am Post subject: |
|
|
| rex123 wrote: | | The --tree switch to emerge can be useful in tracing dependencies. |
No -tree switch found. Only --emtpytree which is the "-e" option in short. I did that, revdep-rebuild shows nothing broken and still the packages showed above are emerging when I try to make a deep world upgrade(!). It tries to emerge xpdf too(!!!!). I can't understand why..
edit: Okay, the -t option saved me. -tree was giving me errors :-/ . The reason was the "gle" package. Now foomatic says that needs xpdf, which makes no sense to me.. but this is a smaller problem. thnx |
|
| Back to top |
|
|
rex123
Apprentice
Joined: 21 Apr 2004
Posts: 272
|
| Posted: Wed Aug 24, 2005 9:38 am Post subject: |
|
|
from man emerge:
| Code: | --tree (-t)
Shows the dependency tree for the given target by indenting dependencies. This is only really useful
in combination with --emptytree or --update and --deep.
|
Edit: Just seen your edit. Looks like you found it. |
|
| Back to top |
|
|
|
Networking & Security
