DebianThis forum is for the discussion of Debian Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I have Knoppix installed alongside Windows 7 on my netbook. It's fast and efficient...all around a great OS. My only Caveat with it is that it's a security hole in my system. There is no login screen of any kind, no password prompts to mount or browse other devices and even though I have a root password set, it is never requested.
My question is, what kind of security layers are available to add so that, should someone get their paws on my computer, they can't boot to Knoppix and go poking through my stuff?
I went ahead and tried to replace Knoppix with plain old Debian, but it was lacking in device support, so I reverted. Thank you in advance.
Knoppix is Debian derivative designed to run as a live system. I'm not 100% sure, but I believe the user runs as root, which is why you're not being prompted for passwords etc, but it's years since I've used it.
You would be better off running pure Debian. You may have had "device support" issues with Debian stable as the kernal Knoppix uses is likely to be newer. Depending on what hardware it is which is lacking support(?) you can install a newer kernel, once you're up and running, from the backports repository.
Knoppix is Debian derivative designed to run as a live system
Exactly right. Take a look at the Knoppix link below which explains the reasons it is not a good idea (particularly for a new Linux user) to install Knoppix to a hard drive.
The first line of defense is to set a bootloader with a password system. Both LILO and GRUB allow to set passwords for booting. Refer to your bootloader's documentation. Depending on how do you do it, you can force the user to enter a password before booting any system, or only one of them.
Anyway, this will protect only against casual "attackers". A decided enemy will just seize your machine, boot a live CD and circunvent the other security measures (you can try to disable CD/USB booting in the BIOS, but it is a trivial defense to defeat).
If you have used the defaults for the install, you are surely using GRUB-legacy as your bootloader.
Last edited by BlackRider; 06-07-2012 at 12:11 PM.
If you don't have internet on the target computer, I think you can copy the files over on a thumb drive.
You could also try a distro based in a country that doesn't have software patent law; I think (but cannot confirm) that Mint, CrunchBang, and a few other Debian-based distros support the BCM4312 LP-PHY "out of the box."
Alternately you can purchase an inexpensive Linux-friendly wireless adaptor for under $10.
I see that there is a rolling release of Linux mint Debian but I have yet to confirm that the drivers will work.
Meanwhile, I'm wondering if maybe I can use grub itself to add a layer of security. Is it possible to password protect individual entries? I want the Windows 7 entry to remain accessible because that has my prey agent on the guest account (heehee). BTW the grub bootloader was installed from BT5, but when I boot to it and type "grub" in the console. it says that it's not installed.(forgot to mention the BT5 install)
I am not a security expert, but I am under the general impression that encrypting your filesystem is the single best step you can take to protect your data if your laptop is stolen.
acktrack5 is yet another distro that is meant to be used from a livecd or flash drive and not installed.
It appears to be working just swell being run from my HD, though That whole endeavor is an advance project for later
Quote:
am not a security expert, but I am under the general impression that encrypting your filesystem is the single best step you can take to protect your data if your laptop is stolen.
I'm sure you are right, but that's probably overkill for my purposes. My concern is more nosy roommates than computer thieves.
I installed Knoppix after BT5, but there are still grub files in the filesystem. I typed "grub-md5-crypt" in the console from within knoppix just to see what would happen, and it prompted for a password. I'm not sure exactly what that would do, seeing as I did not install grub with knoppix. :/ But as I said, I would rather grub ask for a password for individual entries, rather than locking grub altogether
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.