Results 1 to 9 of 9

Thread: RFE: "bootrofrom= …" (boot read-only from) startup option

  1. #1
    Senior Member registered user
    Join Date
    Dec 2004
    Posts
    168

    RFE: "bootrofrom= …" (boot read-only from) startup option

    there actually is a way to boot from an iso knoppix image which is mounted read-only (ro), namely: using the "forensic" startup option. You would, say, startup with the one liner:
    boot: knoppix64 no3d init 2 forensic bootfrom="/dev/sd"
    then on init 2 you go:
    mount | grep sd
    to get:
    /dev/sd on /mnt-iso type ext4 (ro,relatime,block_validity,delalloc,barrier,user_ xattr,acl)
    The problem with the "forensic" option is that then all other partitions are mounted write-protected, read-only. Or, how do you work around this? There should be a "bootrofrom= ..." option for those of us who want to make sure the knoppix baseline is not being altered and want to be able to easily check if that is the case. On init 2 you could always edit /etc/passwd in order to create and change user directories Since the Internet has become such a promiscuous environment in which "Russian hackers" are constantly messing for fun and profit every connected device, introducing such a startup option would be great. I don’t believe at all in antivirus software It shouldn’t be that hard. Probably just including menuentries in the grub2 loader? What may I be missing? lbrtchx

  2. #2
    Senior Member registered user
    Join Date
    Dec 2004
    Posts
    168
    why do you make so hard properly formatting a message? Why can't poster not enter plain html?

  3. #3
    Senior Member registered user
    Join Date
    Dec 2004
    Posts
    168
    after noticing the corrupted formatting but I can't edit it at all

  4. #4

  5. #5
    I normally use the "forensic" option with a pendrive. But what I do is keeping some files/folders (new versions of tor browser, firefox and libflashplayer.so, checked with the sum when downloaded) zipped and encrypted in some folder inside my Knoppix with gpg (gpg -c --cipher-algo AES256 file.zip). So, I boot with knoppix forensic, write my wifi password and then decrypt those files (gpg file.gpg), remember that home folder is not read-only in that session. Every time I boot all is clean. The problem could be if my home folder (and so, my browsers and files) are hacked/cracked in that session. I avoid scripts (noscript addon) and normally I only use the browser, only some times flashplayer (yes, thats dangerous), but if I want I can delete all the decrypted files and encrypt them again in that session. But its great to know that in the next boot (or if I begin the process again in the current session) all is always clean.
    Last edited by joselb; 12-23-2016 at 07:41 AM.

  6. #6
    Senior Member registered user
    Join Date
    Dec 2004
    Posts
    168
    well, yeah I also:

    1) make the image file read-only
    2) make their attributes unmodifiable (lsattr chattr)
    3) resize the file system to its bare minimum (using gpated)

    but a boot ro from an image would be a great option

  7. #7
    I don't understand it very well, even if you boot from an image, using forensic option it will be read only, but it's impossible to use knoppix if ALL is read-only, some parts won't be that way. But the system part will remain read-only and protected in every boot. Maybe I miss something here.

  8. #8
    Senior Member
    Join Date
    Dec 2012
    Posts
    152
    The OP seems to enjoy his trolling.

  9. #9
    Senior Member registered user
    Join Date
    Dec 2004
    Posts
    168
    Quote Originally Posted by philo View Post
    The OP seems to enjoy his trolling.
    http://knoppix.net/forum/faq.php?faq...eading_posting

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  


SAMSUNG 16GB 2Rx4 PC4-2133P DDR4-2133 ECC Registered 1.2V RDIMM M393A2G40DB0-CPB picture

SAMSUNG 16GB 2Rx4 PC4-2133P DDR4-2133 ECC Registered 1.2V RDIMM M393A2G40DB0-CPB

$11.99



HyperX FURY DDR3 16GB 2x 8GB 1600 MHz PC3-12800 Desktop RAM Memory DIMM 240pins  picture

HyperX FURY DDR3 16GB 2x 8GB 1600 MHz PC3-12800 Desktop RAM Memory DIMM 240pins

$23.50



HyperX FURY DDR4 4GB 8GB 16GB 32GB 3200 2400 2666 Desktop RAM Memory DIMM 288pin picture

HyperX FURY DDR4 4GB 8GB 16GB 32GB 3200 2400 2666 Desktop RAM Memory DIMM 288pin

$31.50



Crucial Pro 32GB Kit (2x16GB) 1600 MHz DDR4-3200 UDIMM Desktop Memory - Black picture

Crucial Pro 32GB Kit (2x16GB) 1600 MHz DDR4-3200 UDIMM Desktop Memory - Black

$48.00



HyperX FURY RAM DDR4 16GB 8GB 32GB 4GB 3200 2666 2400 2133 Desktop Memory DIMM picture

HyperX FURY RAM DDR4 16GB 8GB 32GB 4GB 3200 2666 2400 2133 Desktop Memory DIMM

$14.80



A-Tech 8GB DDR3 1600 PC3-12800 Laptop SODIMM 204-Pin Memory RAM PC3L DDR3L 1x 8G picture

A-Tech 8GB DDR3 1600 PC3-12800 Laptop SODIMM 204-Pin Memory RAM PC3L DDR3L 1x 8G

$13.99



M393B1G70QH0-CK0 Samsung 8GB 1Rx4 PC3-12800R DDR3-1600 ECC Registered Memory picture

M393B1G70QH0-CK0 Samsung 8GB 1Rx4 PC3-12800R DDR3-1600 ECC Registered Memory

$4.95



CORSAIR - VENGEANCE LPX 16GB (2PK x 8GB) 3200MHz DDR4 C16 DIMM Desktop Memory... picture

CORSAIR - VENGEANCE LPX 16GB (2PK x 8GB) 3200MHz DDR4 C16 DIMM Desktop Memory...

$44.99



Hynix 32GB 2Rx4 PC4-2666V RDIMM DDR4-21300 ECC REG Registered Server Memory RAM picture

Hynix 32GB 2Rx4 PC4-2666V RDIMM DDR4-21300 ECC REG Registered Server Memory RAM

$34.99



Samsung 32GB 2Rx4 PC4-2666 RDIMM DDR4-21300 ECC REG Registered Server Memory RAM picture

Samsung 32GB 2Rx4 PC4-2666 RDIMM DDR4-21300 ECC REG Registered Server Memory RAM

$36.99