Does anyone know if running Knoppix from a CD is safe in protecting against clickjacking *malicious* scripts ? Any comments would be appreciated.

Not particularly, no. When running a live CD, you have a fully functional operating system, albeit one running in temporary space. Anything that could effect an installed Linux distribution could effect a live-variant.

Furthermore, since a live environment can mount your hard disk and get access to your permanent storage, theoretically it would be possible to craft a script that installs itself to your resident OS from the live environment; or at the very least trash your files.

It is also worth mentioning that, by their nature, live CDs are often limited to older software releases. Without the benefit of constant updates that you would have on an installed OS, the risk is actually higher that you would be running exploitable software.

I concur with MS3FGX. I would just add that something like NoScript will help protect you against clickjacking (among an array of other nasties) on both live and installed systems.

Thank you both for the replies.

I agree with the above comments and also want to add that as far as I know, Knoppix doesn't even have a firewall preinstalled.

1. You could try making your own more secure live CD
2. Use Knoppix for mounting your hard drive and to do analysis.
3. Don't use it on the internet. I have had the experience of having a hard drive ravaged
when I did this, because I did not realise they can mount a hard drive.