Fedora 8 Live DVD Security?!?!?!
All,
I'm looking at creating a Fedora 8 LiveCD, but i need to lock it down as much as possible. Basically all I want to have installed is Gnome (stripped of all the extras, no Firefox, Openoffice, etc). I will be using LiveCD-Creator for this project. I tried using Revisor, but it hasn't been working well. I have been told that you cannot crack open the ISO after creation. Is this true? I was thinking about building the ISO slimmed down as much as possible and then modifying the config files within the ISO after creation for better security. Does anyone have any recommended kickstart configs? Thanks in advance! |
If you want it secure, why pick up Fedora? Or the other way around, why not making it from ground up, so you know exactly what is taken in and what left out?
Check out linuxfromscratch.org => LFS, and the others. Not sure what you mean by "crack open the ISO after creation"; the file can be mounted and read, as long as it's not encrypted (and even then, with enough time it's theoretically possible), and an image can be made of a ready ISO, modified and re-burnt. So I don't see how you could possibly lock something down that can be read :) the same thing as with copyright-protected audio CDs for example..none of the things actually worked like intended, mostly just annoyed the non-criminal-minded customers. |
What I mean by "cracking open the ISO" is to use one of the ISO tools to open it up, modify the config files so that when it boots up it's in the most secure possible configuration.
|
Quote:
Code:
mount -t iso9660 -o loop livecd.iso /mnt/cdrom |
Thanks for the post. Has anyone had any luck actually breaking one of those ISO's open and modifying them? I was told that there is some problems with doing it. He said he tried, but ran into some sort of compression that is used in the disc and couldn't get it to boot properly again. (This was an ISO created with the Livecd-creator utility)
|
Quote:
|
That is probably what he was talking about. I'll have to look into properly doing all that.
Thanks. |
All times are GMT -5. The time now is 03:44 AM. |