User:Ncopa: Difference between revisions
No edit summary |
No edit summary |
||
| Line 1: | Line 1: | ||
draft: | |||
= About = | |||
Alpine Linux is an x86 Linux distribution suitable for firewalls, routers, VPN gateways, lightweight servers (http, sql, mail), resque livecd or other embedded devices. | |||
== Lightweight == | |||
Alpine is based on and [http://busybox.org busybox] (and are thus not a GNU/Linux distro). | |||
The base system, excluding the kernel, is less than 2MB. That includes: | |||
* the C library runtime, [http://uclibc.org uclibc] | |||
* standard tools from [http://busybox.net busybox] (cp, ls, mv, wget, iproute, nc etc) | |||
* package manager, apk-tools | |||
* openrc init system | |||
== Proactive security == | |||
The default kernel is patched with the grsecurity patches and provides features like: | |||
* Address Space Randomization Layout | |||
* Memeory protection | |||
Alpine Linux is a run-from RAM linux distribution. Its original target was small appliances like routers, VPN gateways, or embedded x86 devices. However, it supports hosting other Linux guest OSes under [http://linux-vserver.org/ VServer] control, making it an attractive hosting solution as well. | |||
It can boot from a 1GB USB stick, CDrom, or hard drive. Packages compiled against [http://www.uclibc.org/ uClibc] are pulled into RAM for execution. All packages are compiled with [http://www.grsecurity.net/ grsecurity patches] and [http://en.wikipedia.org/wiki/Stack-smashing_protection SSP] to provide a secure runtime environment. | |||
The lbu backup system stores all changes to /etc (and custom changes) to the boot media, making system disaster recovery brain-dead simple. | |||
The name "Alpine" stands for '''A''' '''L'''inux '''P'''owered '''I'''ntegrated '''N'''etwork '''E'''ngine. Alpine is a "swiss-army-knife" of Linux distributions; with a focus on security. | |||
Revision as of 20:15, 1 October 2009
draft:
About
Alpine Linux is an x86 Linux distribution suitable for firewalls, routers, VPN gateways, lightweight servers (http, sql, mail), resque livecd or other embedded devices.
Lightweight
Alpine is based on and busybox (and are thus not a GNU/Linux distro).
The base system, excluding the kernel, is less than 2MB. That includes:
- the C library runtime, uclibc
- standard tools from busybox (cp, ls, mv, wget, iproute, nc etc)
- package manager, apk-tools
- openrc init system
Proactive security
The default kernel is patched with the grsecurity patches and provides features like:
- Address Space Randomization Layout
- Memeory protection
Alpine Linux is a run-from RAM linux distribution. Its original target was small appliances like routers, VPN gateways, or embedded x86 devices. However, it supports hosting other Linux guest OSes under VServer control, making it an attractive hosting solution as well.
It can boot from a 1GB USB stick, CDrom, or hard drive. Packages compiled against uClibc are pulled into RAM for execution. All packages are compiled with grsecurity patches and SSP to provide a secure runtime environment. The lbu backup system stores all changes to /etc (and custom changes) to the boot media, making system disaster recovery brain-dead simple.
The name "Alpine" stands for A Linux Powered Integrated Network Engine. Alpine is a "swiss-army-knife" of Linux distributions; with a focus on security.