Puppy Linux Discussion Forum

[Pizzasgood]

A common idea around Puppy is that you are invincible when running with pfix=ram. The OS is entirely in ram and the drives are all unmounted. Nothing persists.

I say to you: don't be complacent.

First of all, partitions don't need to be mounted to be modified. Programs that work on the drive at a very low level, such as dd, fdisk, parted, and mkfs.* don't care if it's unmounted (in fact they prefer it).

Second of all, those unmounted partitions could simply be mounted.

In a normal Linux, you would be somewhat protected from those vectors of attack because they require root privileges. In Puppy, however, you run as root by default...

This isn't a criticism. As I have said in the past, I support Barry's choice to make Puppy root by default. (I do believe it would be nice if we had improved support for running as other-than-root built in however.)

I simply wish to make sure that nobody becomes complacent and believes that pfix=ram makes them totally invincible. It makes a huge difference, but there are still plenty of ways for your computer to be borked from pfix=ram mode.


If you want to play around in an environment where you really can't bork the computer, you should look at virtual machines. Assuming a bug-free implementation, you can boot a Puppy with Qemu and do anything you want. Unless you tell Qemu to give the virtual machine access to real devices, it can't touch them. (It can access the network by default, however. That can be disabled, IIRC.)


This public service announcement was sponsored by cake.

[mikeb]

I have wiped the mbr running certain games in wine even though the (c:\) partition was unmounted...one of those occasions where not root running is recommended (by winehq)

mike

[PaulBx1]

pfix=ram, plus a recent full disk backup, makes you invincible.

[rjbrewer]

[Lobster]

I want cake

We do try and educate ourselves

We are generally not running servers
passing along Windows files
That is why Linux has virus checkers - to check
it is not carrying files that it is immune to but could infect the Redmond sheep.

Many of us insist on running from HD
from old habits.
(HD = hard disk - not High Definition in this case)
Some need to use HD for speed
and memory.

Many are better served with a
CD/DVD or multisession Puppy running
- hence the 'puppy pfix=ram' option
at boot up

Using 'puppy pfix=ram' and a new
(not existing save file) I would feel
my cake is safe

Then I would run the firewall
(I have a router firewall) but let us put the firewall
on
I am not yet connected to the internet
but let us have two firewalls
. . . and be running a non Windows OS
Personally I would feel safe

I would then connect to 'The Internet'
(warning may contain . . .
all kinds of things)
- viral ads, time traveling lobsters
dubious images


I would not bother with GROWL
http://www.murga-linux.com/puppy/viewtopic.php?search_id=1376861879&t=45884

Now put on your mind control device
and enjoy baking your cake
http://www.biotele.com/mind_readers.html

More Mind control News
http://tmxxine.com/www/

[aarf]

[aarf]

[aarf]

you better be careful pizza,slandering your puppy like that could have unexpected consequences:Man Shot By His Dog

[hillside]

All my information written on a sheet of paper and locked in my desk drawer doesn't make me invincible.

There are no guarantees in life, but it helps to be a reasonably fast gazelle. If you're too slow, the lions will get you. Window's is definitely the slowest gazelle. Puppy? Too much work for the lions to chase down on a routine basis.

[bee_pipes]

That's setting the bar mighty low. You don't have to outrun the lions, just the slowest gazelle.

Regards,
Pat

[Pizzasgood]

It was strawberry-flavored cake, with strawberry-flavored frosting. Unfortunately, no actual strawberries. Pretty good anyway though.

[aarf]

hmpf.. so it was a fruitcake after all

[Pizzasgood]

Well, a wanna-be fruitcake.

[dejan555]

Open your PC case and unplug your drives physically.
Err, just a thought...

[aarf]