U.S. Dept. of Defense offers up tiny, secure Linux distro...
Posted: Fri 22 Jul 2011, 19:45
(old)Puppy Linux Discussion Forum
READ-ONLY Archive
https://oldforum.puppylinux.com/
U.S. Dept. of Defense offers up tiny, secure Linux distro...
Page 1 of 2
Posted: Fri 22 Jul 2011, 20:35
"They could have just used Puppy" -surely you jest. Puppy is absolutely the furthest you can get from being 'secure'! Anybody who says otherwise is hiding their head in the sand and has no idea at all about what is secure.
Posted: Fri 22 Jul 2011, 21:14
Hello,
Their OS is considered "secure" because it loads from CD and runs in Ram...Puppy is absolutely the furthest you can get from being 'secure'!
By those standards, Puppy is equally secure...
I mean, it aint BSD...
But it is a lot more secure than M$...
Security fears hamper the Linux market, and are mostly unfounded..
Yet M$ touts its products as the "safest".. LOL...
Ahh, I wasn't paying close enough attention...
Posted: Fri 22 Jul 2011, 22:23
There's already a thread about this - mea culpa...
http://murga-linux.com/puppy/viewtopic.php?t=69551
http://murga-linux.com/puppy/viewtopic.php?t=69551
Posted: Fri 22 Jul 2011, 23:03
How about running Puppy from a virtual drive in VirtualBox installed on Puppy.
Would you then have an isolated version of Puppy?
Would you then have an isolated version of Puppy?
Posted: Fri 22 Jul 2011, 23:46
" Puppy is absolutely the furthest you can get from being 'secure'!
Anybody who says otherwise is hiding their head in the sand and
has no idea at all about what is secure. "
""""""""
Nothing is totally secure.
Read about the Mac.
http://murga-linux.com/puppy/viewtopic. ... 336#546336
But your assertion is BS.
To me Puppy is way ahead of most.
Of course I can be hacked.
Banks are hacked...Nato.
LulzSec hits Blackberg Security's "hacking challenge" page;
declines $10k reward. Done strictly for lulz.
http://i.imgur.com/Vf7PK.png
But for the majority Puppy is absolutely safe.
But setup your router properly.
Many old routers still run only WEP.
An occasional wipe of the router logs doesn't hurt either.
Best security is to stay off the web entirely.
"""""""
Here is a thought from CLAM01 .
" The perennial problem with doing banking, or anything else you
want sure security for, from anywhere out and about
is router insecurity. "
http://murga-linux.com/puppy/viewtopic. ... 1&start=45
Chris.
Anybody who says otherwise is hiding their head in the sand and
has no idea at all about what is secure. "
""""""""
Nothing is totally secure.
Read about the Mac.
http://murga-linux.com/puppy/viewtopic. ... 336#546336
But your assertion is BS.
To me Puppy is way ahead of most.
Of course I can be hacked.
Banks are hacked...Nato.
LulzSec hits Blackberg Security's "hacking challenge" page;
declines $10k reward. Done strictly for lulz.
http://i.imgur.com/Vf7PK.png
But for the majority Puppy is absolutely safe.
But setup your router properly.
Many old routers still run only WEP.
An occasional wipe of the router logs doesn't hurt either.
Best security is to stay off the web entirely.
"""""""
Here is a thought from CLAM01 .
" The perennial problem with doing banking, or anything else you
want sure security for, from anywhere out and about
is router insecurity. "
http://murga-linux.com/puppy/viewtopic. ... 1&start=45
Chris.
Posted: Sat 23 Jul 2011, 03:47
I wonder how easy it is to connect to the internet, compared to Puppy's wizard....Probably the best news is that this Linux distribution isn’t limited to the Department of Defense or Air Force staff. It is free to download from the Software Protection Initiative which was put in charge of the distros’ development under the guidance of DoF and AFRL. The download comes in at just 135MB meaning you can stick it on one of those old 256MB USB stick we all have in a drawer somewhere.
Three versions of LPS exist. The 135MB version discussed above is called LPS-Public. Then there’s LPS-Public Deluxe which adds OpenOffice and Adobe Reader for further functionality at the cost of size on disk. Finally there’s the LPS-Remote Access version that is only available upon request. It adds VPN and any custom Thin Client software that an organization requires. For every day users wanting a secure portable distribution LPS-Public is probably all you need, especially if you use something like Google Apps instead of MS Office or OpenOffice.
Read more at Unixmen and the Software Protection Initiative
Posted: Sat 23 Jul 2011, 04:33
In my extremely limited testing........5 machines and wired dsl .........it connected automatically on boot every time.YMMV.Flash wrote: I wonder how easy it is to connect to the internet, compared to Puppy's wizard.
Posted: Sat 23 Jul 2011, 08:09
It did it all totally automatic within some two seconds something.Flash wrote:I wonder how easy it is to connect to the internet, compared to Puppy's wizard.....
Nothing had to be done it just worked
Posted: Sat 23 Jul 2011, 10:22
LPS is bound to have a backdoor installed for the control-freak spooks somewhere.
Posted: Sun 24 Jul 2011, 03:20
dawg:
I wouldn't doubt that.
"""""""
Where any OS is vulnerable is in wifi however.
Do we have a >> tunnel pet l>> ike Hotspot Shield?
Or would this help ....OpenVPN ?
http://www.ventanazul.com/webzine/artic ... u-and-hulu
"""""
Also
http://alternativeto.net/software/hotsp ... form=linux
http://miriup.de/index.php?option=com_c ... 25&lang=en
http://murga-linux.com/puppy/viewtopic. ... b6ea0e4a32
http://www.techsupportalert.com/best-fr ... ervice.htm
Chris.
I wouldn't doubt that.
"""""""
Where any OS is vulnerable is in wifi however.
Do we have a >> tunnel pet l>> ike Hotspot Shield?
Or would this help ....OpenVPN ?
http://www.ventanazul.com/webzine/artic ... u-and-hulu
"""""
Also
http://alternativeto.net/software/hotsp ... form=linux
http://miriup.de/index.php?option=com_c ... 25&lang=en
http://murga-linux.com/puppy/viewtopic. ... b6ea0e4a32
http://www.techsupportalert.com/best-fr ... ervice.htm
Chris.
Posted: Sun 24 Jul 2011, 03:59
Hello,Built by the DOD..
Backdoor? Hell, I`d bet more like a Trap Door..
Lots of interesting bookmarks..
You`d think it would have more wireless drivers..
Fairly new kernel, 2.6.35.x if I remember right..
Forgot to look in about:config in FF..
Looks very official Gman ...
Wanna bet we see it in a movie scene???
Posted: Sun 24 Jul 2011, 07:24
"more like a Trap Door" -no wonder that only the binary ISO is available. All other links to the homepage do not work, and no mention is made anywhere about the sources... I'd be afraid to run that even once on my computers -it could be doing *any* conceivable evil without letting you know...
Posted: Sun 24 Jul 2011, 13:06
The Big Bro made some tool for its own security.. So people that know themselves as free ones may run such distro without sources with hdd physically detached and with any nv-ram chips in the system with /WE pins pulled up. 
As for me, I'll never use such "a black-boxed gift" from BB for any reason.
But the good thing is for state IT staff to share sensitive information loss / leakage responsibility directly with DoD if they use this distro. )
And it can improve general security level of some state depts if they would use it of course instead of M$'s.
As for me, I'll never use such "a black-boxed gift" from BB for any reason. But the good thing is for state IT staff to share sensitive information loss / leakage responsibility directly with DoD if they use this distro. )
And it can improve general security level of some state depts if they would use it of course instead of M$'s.
Posted: Sun 24 Jul 2011, 14:50
Hello,Well, it doesnt, and in fact wont, mount a native drive..
But I`d be afraid to connect it to the net....
Gonna pick at it some more later, and see whats REALLY there..LOL
Remarkably similar to Puppy, in "run as root" and package selection...
I`ll bet the initrd has some interesting stuff in it..
The dir structure is a cross linked mess, to me at least...
But at 135mb, its hiding something...
Basically, its Icewm, Firefox and Leafpad..
And I wonder what else??
Posted: Sun 24 Jul 2011, 15:37
Some of you guys! You probably don't trust pirates either.
I trust the Department of Defense Linux a lot. I'm posting from it now and I've not seen one Drone, not even an AH-64 Apache.
~
I trust the Department of Defense Linux a lot. I'm posting from it now and I've not seen one Drone, not even an AH-64 Apache.
~
Posted: Sun 24 Jul 2011, 16:26
I won't point out that the copy of 4.31 I use is still exactly as it was when I burned the ISO onto the CD. That is really cheating on the question of security.amigo wrote:"They could have just used Puppy" -surely you jest. Puppy is absolutely the furthest you can get from being 'secure'! Anybody who says otherwise is hiding their head in the sand and has no idea at all about what is secure.
In many ways, puppy does things in a manner that improves security. By keeping things very simple, the odds of a flaw are reduced. By not mounting every drive at startup, the drives are less likely to get written. When you first boot puppy it doesn't connect to the network. If you stay off the network you are a lot safer.
Microsofts NT was supposed to be reasonably secure. It turned out to have holes big enough you could drive a truck through. If you truly want security, the best option is to keep things very simple and only let a machine do those things it is needed for.
Posted: Sun 24 Jul 2011, 19:30
A big part of the distro is the smartcard drivers and programs which is why i assume it is so big in that sense. Btw has anyone tried to get smartcards working on puppy i mentioned before i tried and failed horribly. I for one trust that there are no hidden backdoors intentionally put in as if this was made to access secure dod sites and transfer sensitive dod information why would they risk a backdoor which would eventually be found and compromised.puppyluvr wrote:
Well, it doesnt, and in fact wont, mount a native drive..
But I`d be afraid to connect it to the net....
Gonna pick at it some more later, and see whats REALLY there..LOL
Remarkably similar to Puppy, in "run as root" and package selection...
I`ll bet the initrd has some interesting stuff in it..
The dir structure is a cross linked mess, to me at least...
But at 135mb, its hiding something...
Basically, its Icewm, Firefox and Leafpad..
And I wonder what else??
Posted: Mon 25 Jul 2011, 08:07
"still exactly as it was when I burned the ISO" -that's of course correct. But you are ignoring what your computer may do while you are on-line. This is why I always argue with the 'puppy is secure' statements. Even though your OS, as loaded, may be clean, attacks can occur while you are running. This is also no help against lack of anonymity. Of course most users don't have any *visible* problems -maybe not any at all. But it simply madness to assume that you are safe because you run Puppy or run from RAM, etc. All the discussions here about 'security' are too one-sided and don't touch on the full gamut of problems which can occur. Viruses, trojan, root-kits, lack of anonymity, bot-nets -they are all diferent things and each should be addressed in its' own way.
Posted: Mon 25 Jul 2011, 08:11
@puppylvr, just because the command 'mount' is missing or apparently won't mount a drive does not mean that the distro doesn't or can't mount a drive. The code in the mount program uses the kernel system call mount() which can be integrated into any program you like. So, the thing could be actually mounting everything available on the machine, without showing any evidence of it....