LinuxQuestions.org
Support LQ: Use code LQ3 and save $3 on Domain Registration
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Desktop
User Name
Password
Linux - Desktop This forum is for the discussion of all Linux Software used in a desktop context.

Notices



Reply
 
Search this Thread
Old 05-20-2009, 07:14 AM   #1
sundry_50
LQ Newbie
 
Registered: Jan 2005
Distribution: knoppix/debian
Posts: 24
Blog Entries: 2

Rep: Reputation: 0
How do I prevent mounting drives in triple boot


We are setting up a training station on a desktop PC and would like to triple boot. The problem: How do we forbid mounting of the XP or VISTA files by the linux system? Is it better to use a virtual machine in VISTA or XP to isolate the linux parts or can we triple boot and isolate? We fear that once we train newbies to mount other filesystems they will experiment and hose the XP or VISTA OS which would affect the moneymaker side of training.
 
Old 05-20-2009, 07:35 AM   #2
druuna
LQ Veteran
 
Registered: Sep 2003
Posts: 10,532
Blog Entries: 7

Rep: Reputation: 2374Reputation: 2374Reputation: 2374Reputation: 2374Reputation: 2374Reputation: 2374Reputation: 2374Reputation: 2374Reputation: 2374Reputation: 2374Reputation: 2374
Hi,

Wouldn't it be a very (very!) good idea to setup a brand new, maybe modified to a specific task, environment every time a new group of trainees arrive instead of trying to close off/secure certain parts of the machine(s)?

You could create multiple images that are tailored to the specific training session and load them when needed/wanted.

I've been to many Unix/Linux trainee sessions to know that this is 'normal behavior'. It provides all trainees the same, sane environment instead of a possible broken system (Yep, me and just about everybody in class tried to 'break/compromise' the system during the training sessions.......).

Not the answer you asked for, I'm sure. But looking at the description of the problem you are giving this is a much more practical solution.
 
Old 05-20-2009, 08:11 AM   #3
pierre2
Member
 
Registered: May 2009
Location: Perth, AU
Distribution: LinuxMint
Posts: 339
Blog Entries: 8

Rep: Reputation: 74
If you use multiple images inside a virtual machine in VISTA or XP, that are tailored to the specific training session, as suggested above.

Taylor each image to suit each training lesson(s). maybe more than one theme / lesson to a image would be the most practical.

If the virtual O/S is messed up,
then its simply a straight replacement of the virtual image....

also have a pwd on the M$ login, to stop any attempt to load another image.

Last edited by pierre2; 05-20-2009 at 08:14 AM.
 
Old 05-20-2009, 08:57 AM   #4
jschiwal
Guru
 
Registered: Aug 2001
Location: Fargo, ND
Distribution: SuSE AMD64
Posts: 15,733

Rep: Reputation: 655Reputation: 655Reputation: 655Reputation: 655Reputation: 655Reputation: 655
One other option is to remove ntfs support. E.G. from the kernel and the ntfs-3g package.
For removable drives you could have a polkit policy against mounting. If the trainies don't have root access, you could have it mount read-only with only root access. I.E. user=root,dmask=0500,fmask=0400 mount options.

With root access there isn't much you can do to protect it. If someone can boot up a cdrom live distro, or usb distro, then even using virtualization won't help. ( You can disable booting this way in the bios, and password protect alternative grub menu O& boot options )
 
Old 05-20-2009, 09:44 AM   #5
sundry_50
LQ Newbie
 
Registered: Jan 2005
Distribution: knoppix/debian
Posts: 24
Blog Entries: 2

Original Poster
Rep: Reputation: 0
Thank you for the comments. I'll expand the problem a little. The XP/VISTA OS's are on ten desktops for teaching senior citizens how to use their computers. We have images for those and have learned to deal (years of classes) with related problems. The Linux OS will be used by our computer club SIG (special interest group - Linux) for experimenting and learning. Another SIG (networking group) is responsible for the classroom and they are asking for the isolation.

Linux SIG may not need an image, as we are experienced newbies and can handle disaster to our OS, after leaning heavily on this website. We need to be able to use ntfs for usb drives, I think.

Two things occur to me:
1 - The threat to Linux, as a virtual machine, may be higher than the risk to the other OS's from Linux. Windows trainees could delete the virtual machine or program
2 - We have a supervised situation to preclude XP/VISTA students from live CD crimes. Our Linux users are not interested in the other OS's and won't be likely to cause a problem and loose privileges.

Last edited by sundry_50; 05-21-2009 at 10:35 PM.
 
  


Reply

Tags
security


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
prevent mounting partition using Live CD Andy Alkaline Linux - Security 6 10-21-2008 03:30 PM
How do I start slackware without mounting drives, but have drives accessible? Lufbery Slackware 15 08-25-2008 08:18 AM
mounting hard drives of windows on linux in dual boot system vaibhavpatil.87 Linux - Newbie 4 07-23-2007 02:22 AM
Triple booting WinXP, Slackware, and Gentoo on 2 hard drives rob0t Slackware 7 06-08-2006 10:42 PM
USB for kernel 2.6 and mounting drives at boot scalarhydra Debian 1 06-25-2004 12:59 PM


All times are GMT -5. The time now is 09:01 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration