Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Fri 25 Jul 2014, 16:04
All times are UTC - 4
 Forum index » Off-Topic Area » Security
I have specific needs for a live OS
Post new topic   Reply to topic View previous topic :: View next topic
Page 1 of 3 [31 Posts]   Goto page: 1, 2, 3 Next
Author Message
Sideshow Todd

Joined: 14 Nov 2010
Posts: 6

PostPosted: Sun 14 Nov 2010, 18:17    Post subject:  I have specific needs for a live OS
Subject description: An explanation of why I need a live OS and my requirements.
 

This post explains why I need a live OS and my requirements and qualifications for a live OS must meet.

I travel and work during the summer from June to October. I must email my family or post to face-book. I don't have a laptop and couldn't carry one anyhow, so I must use public computers: hotels or libraries.

Hotel computers are a risk, for they -more times than not- lack proper security restrictions: such as lags in security updates for the OS and anti-virus, improper firewall settings (if it has a firewall), or they leave the entire C drive accessible to any tom dick, or harry, giving anyone the opportunity to install malware for there own purpose, criminal or otherwise. My my user-names and passwords are in jeopardy. And then there's the privacy issue too.

Sometimes Libraries can lack security sensitivity too, but not so much as many hotels.

And then there's those damn firewalls that I sometimes get caught behind. Sometimes the restrictions are so strict that I'm lockout of legitimate sites. Sometimes I can't chat with my family on face-book. Sometimes I can work around the filters and firewalls, but sometimes the admin knows what he's doing - giving me no hope of bypassing the restrictions.

The qualifying live OS candidate is as follows:

1. The live OS must be able to run entirely in its own environment on a USB. NOTHING must be left on the hard drive that I'm leaching from, not even swap files. I don't want Puppy to touch the local drives or the OS - unless I want it to. Except the UBS thingys that must be use to reconize the Flash drive - of course

2. The USB live OS must be reliably bootable on MS Windows XP, Vista, Windows 7 and Linux.

3. I must be able to use a locally ran VPN. Sometimes all security measures are run on the server side.

Yes or no. Does Puppy meet my qualifications? Is Puppy going to be reliable?

PS. My stick will be 8Gb....surely roomy enough for the job. Yes? But I'd rather go with a smaller stick, but if it's in a contained environment and must use swap files, I'm not sure if I dare go lower.
Back to top
View user's profile Send private message 
trapster


Joined: 28 Nov 2005
Posts: 1999
Location: Maine, USA

PostPosted: Sun 14 Nov 2010, 18:21    Post subject:  

Quote:
"NOTHING must be left on the hard drive that I'm leaching from"


This is comforting.

_________________
trapster
Maine, USA

Asus eeepc 1005HA PU1X-BK
Frugal install: Puppeee4.31 + 1.0, Puppy4.10 + Lupu52
Currently using Slacko AND lupu52 w/ fluxbox
Back to top
View user's profile Send private message Visit poster's website 
noryb009

Joined: 20 Mar 2010
Posts: 537

PostPosted: Sun 14 Nov 2010, 22:21    Post subject:  

Puppy Linux doesn't touch the hard drive at all, and should be bootable on most computers (unless the BIOS is password protected).

1. Yes. Puppy leaves nothing on the hard drive(s)

2. As good as it can get. You can look for a "Press key to select boot medium" (or something like that at startup), and select the USB from there, or change the BIOS (most places don't bother with a password).

3. I'm pretty sure, someone else might be able to answer this better.

And 8GB is plenty, you only need 1GB or so. Also, I would stay away from a swap on a flash drive, because flash drives have limited writes. It would be hard to find a public computer with less then 1GB of RAM now a days, but you can create a swap if puppy crashes because of RAM.
Back to top
View user's profile Send private message 
Sideshow Todd

Joined: 14 Nov 2010
Posts: 6

PostPosted: Mon 15 Nov 2010, 15:24    Post subject: Problem  

Can't I run puppy with have to reboot and shut down MS Windows? Can't I simply run from the stick.

This presents a problem because when I'm at a public library I won't be able to restart windows because most of the time a password is need load MS Windows. I think the librarians will be looking at me crossed eyed.

What I need is to go to node, plug the stick, and fire up Puppy without having to shutdown MS Windows. That is: run in the stick over MS Windows, like a shell. Can Puppy do this? Then I'll need not be bothered by a password protected BIOS either.

And 8GB is plenty, you only need 1GB or so. Also, I would stay away from a swap on a flash drive, because flash drives have limited writes. It would be hard to find a public computer with less then 1GB of RAM now a days, but you can create a swap if puppy crashes because of RAM.

You say that Puppy doesn't touch the MS Windows hard-drive. This means that's there no swap-files used or needed?

Seems like that Puppy would have problem on occasion with no virtual cache.

P.S I was ignorant of the limited number of writes of a flash drive....until you came along.
Back to top
View user's profile Send private message 
Flash
Official Dog Handler


Joined: 04 May 2005
Posts: 10930
Location: Arizona USA

PostPosted: Mon 15 Nov 2010, 16:24    Post subject:  

I can't see any reason to help someone abuse a service that my taxes pay for. What are you up to, Todd?
Back to top
View user's profile Send private message 
noryb009

Joined: 20 Mar 2010
Posts: 537

PostPosted: Mon 15 Nov 2010, 16:44    Post subject:  

Puppy can run in windows, but it wouldn't be able to do much. (virtual box on a USB, for anyone wondering)

In a virtual box, there will be no protection against key loggers or other things, though. Your best bet is to use it only at hotels, and windows at libraries.
Back to top
View user's profile Send private message 
rokytnji


Joined: 20 Jan 2009
Posts: 1279
Location: Pecos/ Texas

PostPosted: Mon 15 Nov 2010, 17:28    Post subject:  

Quote:

What I need is to go to node, plug the stick, and fire up Puppy without having to shutdown MS Windows. That is: run in the stick over MS Windows, like a shell. Can Puppy do this? Then I'll need not be bothered by a password protected BIOS either.


It is not Puppy that is not capable of doing this. It is more of a Question of if The Windows Operating system is capable of doing this. And no library computer has Virtual Box installed in Windows that I know of in my small town. And doing a Virtual Box install of Puppy in Windows in a Library is pointless and wrong. I run AntiX live persistent pen drives and Puppeee persistent frugal pendrives. If one can't access bios ,"password protected", (which most public computers are) then neither of my pendrives will boot unless pendrive is placed first on boot order. Same, Same, with Live CD.

So your way of wanting to do this is not possible in the least. Not a Linux thing. It is a Windows/bios thing.

Quote:
I must email my family or post to face-book. I don't have a laptop and couldn't carry one anyhow


http://www.mwave.com/mwave/skusearch_v3.asp?scriteria=AA97805&pageTitle=Asus%20Eee%20PC%20EEEPC900SD-PUR001X%20Purple%20Netbook%20Intel%20Cel

It runs Puppeee and AntiX and fits in my Motorcycle Vest Pocket (Jean jacket with sleeves cut). Charger to. Works at all free wifi hotspots also.
Just pointing out a alternative since your way probably won't work. You'll be locked out of bios to change boot order to pen drive.

My above suggestion gives you a nice 9" netbook (I have a Asus 900 and a 701SD". It is small and light and easy to transport. You can keep XP on it. You can make a 8 gig Puppeee Pendrive that will boot off of it and everything work out of the box. It will save changes also. You can change boot order by hitting the Esc key. I did a dd on my 701SD (using PUDD in Puppeee) and used 8 gig pendrive to store XP Image. I run Antix internally on my EEEPCs. But I also have a 4 gig SD flash card that runs Puppeee Frugal on both units.

Up to you though.
Back to top
View user's profile Send private message Visit poster's website 
Pizzasgood


Joined: 04 May 2005
Posts: 6270
Location: Knoxville, TN, USA

PostPosted: Mon 15 Nov 2010, 19:30    Post subject:  

Yep, sorry. The only way to be absolutely certain that the existing OS isn't snooping on you is to shut the computer down and boot from your own OS. And even then, it doesn't guard you against hardware keyloggers and such. And don't think that would be overly paranoid. They're very small and simple. Also, in many cases it would be more reliable to drop in a hardware keyboard logger than to try to get administrator access to install a software-based one. Basically, they would just have to unplug the keyboard, plug the keyboard into the keylogger, and plug the keylogger into the port the keyboard was plugged into. A few hours/days later they come back and take it out, and read back the captured keystrokes at their leisure. No amount of software security will protect you from something like that.

(EDIT: Well, I guess you could use a virtual, mouse-operated keyboard to bypass keyloggers. Random snoopers aren't going to bother recording the mouse, since it would be much more difficult to get any useful information that way (though a targeted attack against somebody like a CEO or politician might consider it worth doing - in which case having the software keyboard rearrange the keys randomly every couple minutes would kill that method as long as there are no cameras around to record the screen.))

So you would definitely be better off with your own netbook. Then you only have to worry whether the internet connection is secure, except that you actually don't, because there is No Such Thing as a secure internet connection, so there isn't much point... (In other words, unless you are using end-to-end encryption (ssl, ssh, encrypted vpn, gpg, etc.), assume that bad guys will read any data you send out over the net no matter where you are connected from, even at home.)

Also, if you happen to have reason to believe you are being targeted (you run a big company with fierce competitors, for example, or are the governor of a state), I wouldn't trust ssl either. I haven't really researched this, but my impression is that it is insufficient for satisfying the level of paranoia that should be held by people in such positions. Probably not a concern for the average Joe - but then, I'm no expert.

_________________
Between depriving a man of one hour from his life and depriving him of his life there exists only a difference of degree. --Muad'Dib

Back to top
View user's profile Send private message Visit poster's website 
Sideshow Todd

Joined: 14 Nov 2010
Posts: 6

PostPosted: Tue 16 Nov 2010, 15:15    Post subject:  

Quote:
Yep, sorry. The only way to be absolutely certain that the existing OS isn't snooping on you is to shut the computer down and boot from your own OS. And even then, it doesn't guard you against hardware keyloggers and such. And don't think that would be overly paranoid. They're very small and simple. Also, in many cases it would be more reliable to drop in a hardware keyboard logger than to try to get administrator access to install a software-based one. Basically, they would just have to unplug the keyboard, plug the keyboard into the keylogger, and plug the keylogger into the port the keyboard was plugged into. A few hours/days later they come back and take it out, and read back the captured keystrokes at their leisure. No amount of software security will protect you from something like that.

(EDIT: Well, I guess you could use a virtual, mouse-operated keyboard to bypass keyloggers. Random snoopers aren't going to bother recording the mouse, since it would be much more difficult to get any useful information that way (though a targeted attack against somebody like a CEO or politician might consider it worth doing - in which case having the software keyboard rearrange the keys randomly every couple minutes would kill that method as long as there are no cameras around to record the screen.))


Reply: I was that Puppy doesn't touch the Host computers drive....though
the swap is use, thus leaving behind.....

So, if I'm running from Puppy, with of course
have it's own keyboard drivers, and I'm not
using the MS Windows system (except for the swap),
then how could any spyware log keystrokes or any other a activity? Doesn't make sense to me, unless I'm missing something.


Quote:
I can't see any reason to help someone abuse a service that my taxes pay for. What are you up to, Todd?


Reply: Perhaps you didn't read the thread starter closely enough. I want to protect my user-names and passwords. And I want to bypass annoying local firewalls that filter sites and apps I need.

And to search and look at naked pictures of your mother.
Back to top
View user's profile Send private message 
Flash
Official Dog Handler


Joined: 04 May 2005
Posts: 10930
Location: Arizona USA

PostPosted: Tue 16 Nov 2010, 15:51    Post subject:  

Uh huh. That's what I expected.

I'm pretty sure that if you're caught doing what you want to use Puppy for, you'll be kicked out and told never to come back. There is a reason why libraries and other public places don't want you doing what you want to do: even if you don't misuse their computers, once you show others how, someone will. That much has been proven beyond doubt.
Back to top
View user's profile Send private message 
Sideshow Todd

Joined: 14 Nov 2010
Posts: 6

PostPosted: Tue 16 Nov 2010, 22:31    Post subject: Zooooom Woooooooosh over the head
Subject description: Missing concept.
 

The last post being my premise to support my hypothesis - I believe that I can be reasonably sure that you can't quite grasp the consent of humor and sarcasm....that you take yourself way to seriously.

First, it's impossible for me to view porn at any library, for the computers are always in plan view of the staff and the general public.

Two, most libraries have a time limit that restrict me from wasting much time, if any. More times than not, I've barely enough time to fire off my emails and check my facebook page.

In short, I assure you that my actions are quite legitimate.










P.S. Your mother is smoking hot, Dude!
Back to top
View user's profile Send private message 
Flash
Official Dog Handler


Joined: 04 May 2005
Posts: 10930
Location: Arizona USA

PostPosted: Wed 17 Nov 2010, 00:01    Post subject:  

I can see that your actions are legitimate.
Back to top
View user's profile Send private message 
Bruce B


Joined: 18 May 2005
Posts: 11080
Location: The Peoples Republic of California

PostPosted: Wed 17 Nov 2010, 00:27    Post subject:  

Quote:
Puppy Linux doesn't touch the hard drive at all, and should be bootable on most computers (unless the BIOS is password protected).


In many cases depending on install type or lack of, Puppy will mount and
search each partition looking for Puppy parts.

_________________
New! Puppy Linux Links Page
Back to top
View user's profile Send private message 
jemimah


Joined: 26 Aug 2009
Posts: 4309
Location: Tampa, FL

PostPosted: Wed 17 Nov 2010, 01:01    Post subject:  

Unless the proxy is lame and entirely client-side, you won't be able to get around it this way.

You usually need to buy your own server somewhere in the cloud that's not blocked and route your encrypted traffic through there. As Pizzasgood said, your mileage may very on how well encryption will protect you, and it's no good against local hardware sniffers.

There's plenty of proxy avoidance servers on the net, but net-nanny software generally becomes aware of them quickly - which is why you have to host it yourself and tell no one.

Sometimes Tor will work for proxy avoidance - but using that may cause problems on the local network. Not recommended for the library or workplace.
Back to top
View user's profile Send private message Visit poster's website 
moB

Joined: 19 Oct 2009
Posts: 116
Location: Coastal

PostPosted: Wed 17 Nov 2010, 01:38    Post subject: Re: Problem
Subject description: portable virtualbox?
 

Sideshow Todd wrote:
Can't I run puppy with have to reboot and shut down MS Windows? Can't I simply run from the stick.


Sideshow Todd wrote:

P.S I was ignorant of the limited number of writes of a flash drive....until you came along.



Although flash media have limited rewrite, you can get what you pay for. Some are longer lasting than others. For example Steve J is moving his product line to solid-state harddrives (read 80+GB flash drives.)


Look here Portable virtualBox: http://www.vbox.me/ (It's a wrapper--so it downloads vbox and integrates the code. Vbox is installed then uninstalled at each runtime.)

Is this what you need?
Best results to you!
moB

"But quitting all these unprofessional attempts,
let us glance at those pictures of Leviathan
purporting to be sober, scientific delineations,
by those who know."
--H. Melville, Moby Dick


ps. Administrative privileges are required, otherwise use the slower qemu-based puppy.

And:
http://www.pendrivelinux.com/using-a-portable-virtualbox-to-run-linux-from-usb/

'Portable' gets the Innotek/Sun/Oracle program and wraps it.

VBox: http://www.virtualbox.org

There's an OSE version, too.

Main competition:

VMWare: http://www.vmware.com/products/player/


ps.

Google says it's time to curb Internet censorship activities
http://www.reuters.com/article/idUSTRE6AE2HU20101115
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 1 of 3 [31 Posts]   Goto page: 1, 2, 3 Next
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Off-Topic Area » Security
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.1095s ][ Queries: 11 (0.0041s) ][ GZIP on ]