So many people have misread the documentation regarding CAA that they’ve made a brokenness standardized (but highly undocumented).

A setting of 0 means that an issuer is allowed to issue certificates if it doesn’t understand the record it finds. A setting of 128 means that an issuer is NOT allowed to issue certificates if it doesn’t understand the record.

However, people have not paid attention to this, so a setting of ‘1’ also means that the issuer is to not issue records unless it’s explicitly understood.

Unless you DD a rebuilt image, the installer needs a bit more than 128MB- however, the OS itself manages to barely fit into 64MB.

root@superteeny:/# free -h
              total        used        free      shared  buff/cache   available
Mem:            64M       35.2M          1M         48K         57M         25M
Swap:            0B          0B          0B
root@superteeny:/# cat /etc/debian_version 
9.0

It’s tight, but workable. It’ll work quite a bit better with swap (or RAM, really). I just did this to show that it is possible.

I also ran it with a manual upgrade from Wheezy on an OpenVZ container, and it worked swimmingly well. I wouldn’t suggest it, but it is possible.

This is Washingtons’ Mt. Rainier as seen from the isle seat in a small 727. Pretty cool with the cloud coverage, huh?

Older Entries: Newer Entries: Stuff from before Stuff that came after this