Thanks to
- https://hallard.me/raspberry-pi-read-only/
- http://k3a.me/how-to-make-raspberrypi-truly-read-only-reliable-and-trouble-free/
Tested successfully on:
$ lsb_release -a
No LSB modules are available.
Distributor ID: Debian
Description: Debian GNU/Linux 7.11 (wheezy)
Release: 7.11
Codename: wheezy
And:
Distributor ID: Raspbian
Description: Raspbian GNU/Linux 8.0 (jessie)
Release: 8.0
Codename: jessie
Create /bin/remount_readwrite with:
#!/bin/sh
mount -o remount,rw /
Create /bin/remount_readonly with:
#!/bin/sh
mount -o remount,ro /
Make them executable:
chmod +x /bin/remount_read*
sudo apt-get install busybox-syslogd && sudo apt-get remove --purge rsyslog
(now view logs with logread command)
Edit /boot/cmdline.txt and append fastboot noswap ro, for example:
dwc_otg.lpm_enable=0 console=ttyAMA0,115200 console=tty1 root=/dev/mmcblk0p2 rootfstype=ext4 elevator=deadline rootwait fastboot noswap ro
rm -rf /var/lib/dhcp/ && ln -s /tmp /var/lib/dhcp
rm -rf /var/run && ln -s /tmp /var/run
rm -rf /var/spool && ln -s /tmp /var/spool
rm -rf /var/lock && ln -s /tmp /var/lock
rm -rf /etc/resolv.conf && ln -s /tmp/dhcpcd.resolv.conf /etc/resolv.conf
touch /tmp/dhcpcd.resolv.conf;
??? TODO ???
rm /var/lib/systemd/random-seed && ln -s /tmp/random-seed /var/lib/systemd/random-seed
Add mkdir -p $LOGDIR to /etc/init.d/supervisor:
case "$1" in
start)
echo -n "Starting $DESC: "
mkdir -p $LOGDIR
cp -R /var/lib/samba /var/lib/samba_real
sudo rm -rf /var/lib/samba && sudo ln -s /tmp/samba/lib-samba /var/lib/samba
sudo rm -r /var/cache/samba && sudo ln -s /tmp/samba/cache-samba /var/cache/samba
sudo rm -r /var/log/samba && sudo ln -s /tmp/samba/log-samba /var/log/samba
Create /etc/init.d/fixsamba.sh with the following:
#!/bin/bash
# this copies the samba folder from our home folder to the temporary fs on bootup and creates
# necessary folders for samba to work with on the temporary fs
mkdir /tmp/samba
cp -R /var/lib/samba_real /tmp/samba/lib-samba
mkdir /tmp/samba/cache-samba
mkdir /tmp/samba/log-samba
sudo ln -s /tmp/samba/log-samba /var/log/samba
Then make it run on startup:
sudo chmod 755 /etc/init.d/fixsamba.sh
sudo /etc/init.d/fixsamba.sh
sudo update-rc.d fixsamba.sh defaults
Edit /etc/ntp.conf and set the following
driftfile /var/lib/ntp/ntp.drift
Modify /etc/cron.hourly/fake_hwclock with:
#!/bin/sh
#
if (command -v fake-hwclock >/dev/null 2>&1) ; then
/bin/remount_readwrite
fake-hwclock save
/bin/remount_readonly
fi
Create the file /etc/apt/apt.conf.d/50remount-readonly with the following:
# /etc/apt/apt.conf.d/50remount-readonly
DPkg::Pre-Invoke { '/bin/remount_readwrite'; };
DPkg::Post-Invoke { '/bin/remount_readonly'; };
Add ro option and add tmpfs drives:
...
/dev/mmcblk0p1 /boot vfat defaults,ro 0 2
/dev/mmcblk0p2 / ext4 defaults,noatime,ro 0 1
tmpfs /tmp tmpfs nosuid,nodev 0 0
tmpfs /var/log tmpfs nosuid,nodev 0 0
tmpfs /var/tmp tmpfs nosuid,nodev 0 0
I am going to use it but I have an issue which I am not clear about, We create a solar monitoring system that constantly reads the solar values from inverters and then sends back to our server. Power Failure is a common problem there, and rasberry boot becomes corrupt and I have to reinstall rasbian Buster and then , rasberry also runs a small database , sqllite , the database corruption is not an issue for me until it can be ssh , now if i follow the tutorial then even then in my case the database and everything will be still on same SD card, is there any way that OS is installed on Rasberry and made readonly and all writing is done to external USB drive so even if rasberry power fails and rasberry reboots then it boots its OS and then I can SSH and fix the rasberry remotely?