why do you make so hard properly formatting a message? Why can't poster not enter plain html?
there actually is a way to boot from an iso knoppix image which is mounted read-only (ro), namely: using the "forensic" startup option. You would, say, startup with the one liner:then on init 2 you go:boot: knoppix64 no3d init 2 forensic bootfrom="/dev/sd"to get:mount | grep sdThe problem with the "forensic" option is that then all other partitions are mounted write-protected, read-only. Or, how do you work around this? There should be a "bootrofrom= ..." option for those of us who want to make sure the knoppix baseline is not being altered and want to be able to easily check if that is the case. On init 2 you could always edit /etc/passwd in order to create and change user directories Since the Internet has become such a promiscuous environment in which "Russian hackers" are constantly messing for fun and profit every connected device, introducing such a startup option would be great. I don’t believe at all in antivirus software It shouldn’t be that hard. Probably just including menuentries in the grub2 loader? What may I be missing? lbrtchx/dev/sd on /mnt-iso type ext4 (ro,relatime,block_validity,delalloc,barrier,user_ xattr,acl)
why do you make so hard properly formatting a message? Why can't poster not enter plain html?
after noticing the corrupted formatting but I can't edit it at all
I normally use the "forensic" option with a pendrive. But what I do is keeping some files/folders (new versions of tor browser, firefox and libflashplayer.so, checked with the sum when downloaded) zipped and encrypted in some folder inside my Knoppix with gpg (gpg -c --cipher-algo AES256 file.zip). So, I boot with knoppix forensic, write my wifi password and then decrypt those files (gpg file.gpg), remember that home folder is not read-only in that session. Every time I boot all is clean. The problem could be if my home folder (and so, my browsers and files) are hacked/cracked in that session. I avoid scripts (noscript addon) and normally I only use the browser, only some times flashplayer (yes, that´s dangerous), but if I want I can delete all the decrypted files and encrypt them again in that session. But it´s great to know that in the next boot (or if I begin the process again in the current session) all is always clean.
Last edited by joselb; 12-23-2016 at 07:41 AM.
well, yeah I also:
1) make the image file read-only
2) make their attributes unmodifiable (lsattr chattr)
3) resize the file system to its bare minimum (using gpated)
but a boot ro from an image would be a great option
I don't understand it very well, even if you boot from an image, using forensic option it will be read only, but it's impossible to use knoppix if ALL is read-only, some parts won't be that way. But the system part will remain read-only and protected in every boot. Maybe I miss something here.
The OP seems to enjoy his trolling.
CISCO MCS 7800 (2x) Intel Xeon @ 2.33 GHz 4GB Ram, NO HDD
$59.99
DELL PowerEdge R730XD 24x 2.5" Server Dual 750W Dual Heatsink - BareBones TESTED
$269.99
HP ProLiant DL360 G9 Server 2x E5-2660v3 2.60Ghz 20-Core 96GB P440ar
$304.35
Supermicro 4U 36 Bay Storage Server 2.4Ghz 8-C 128GB 1x1280W Rails TrueNAS ZFS
$721.06
Intel Xeon E5-2680 v4 2.4GHz 35MB 14-Core 120W LGA2011-3 SR2N7
$17.99
Intel Xeon Gold 6140 SR3AX 2.3GHz 18-Core Processor CPU
$44.99
Intel Xeon E5-2697 v2 2.7GHz 30M 12-Core LGA2011 CPU Processor SR19H
$27.99
HP Z4G4 Intel Xeon W2133-3.6 GHz, 256 NVME, 6TB HDD, 32GB RAM P620 NO OS
$265.00
HP ProLiant DL380 Gen9 16SFF 2x E5-2680v4 2.4GHz =28 Cores 64GB P840 4xRJ45
$353.00
DELL PowerEdge R730 Server 2x E5-2690v3 2.6GHz =24 Cores 32GB H730 4xRJ45
$274.00