A Readonly filesystem on Bootable CD

    Date24 Jun 2001
    3880
    Posted ByAnthony Pell
    In this article, the author describes the process for creating a customized bootable CD for both the FreeBSD and OpenBSD operating systems. The CD can then be used to run a secure server that can't be modified.. . . In this article, the author describes the process for creating a customized bootable CD for both the FreeBSD and OpenBSD operating systems. The CD can then be used to run a secure server that can't be modified.

    Previous work to make a read-only mounting of root and /usr on a normal hard disk was working for Sparc and i386 in October 2000. With upgrades to -current every now and then, I noticed that with my changes to tcpdump, /etc files, cg3 and cg6 drivers, dhclient-script, miscellaneous others -- let alone the */conf/ files to hard-wire device numbers to disk and tape drives, that it was nearly impossible to keep up with the development changes.

    I made the decision to make the CD with as few changes as possible from the base distribution. To allow for booting and getting IP addresses, DHCP is the only way to go. There are shell variables in dhclient-script that are passed in from dhclient. These need quotes around them in lots of places. [Security enhancement -- if I can use them to break things ...]

    You are not authorised to post comments.

    LinuxSecurity Poll

    What is your favorite LinuxSecurity.com feature?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /component/communitypolls/?task=poll.vote&format=json
    17
    radio
    [{"id":"65","title":"Feature articles","votes":"0","type":"x","order":"1","pct":0,"resources":[]},{"id":"66","title":"News","votes":"1","type":"x","order":"2","pct":100,"resources":[]},{"id":"67","title":"HOWTOs","votes":"0","type":"x","order":"3","pct":0,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.