On Tue, 20 Jan 2004 13:52:41 -0500 gabriel <[EMAIL PROTECTED]> wrote:
> a while back i modified an old gentoo 1.2 install cd to do just that. > and yes, it's considerably more secure (ie. even if a rootkit gets > intalled, a reboot reverts everything back to normal). > That was my thinking. > the biggest problem i ran into though was software upgrades etc. if a > new version of iptables came out, or (gods forbid) a new kernel, > upgrading had to take place on another machine in a chroot and then > re-burned. ...and then my box started spontaneously kernel-panicking. > I don't think that I would be inclined to do a lot of upgrades, except for security. The machine that I am using for it at the moment takes about a week to build anything, so I have become quite circumspect about doing any software upgrades. My chief worry is about making changes to my firewall script but I may use a read only floppy for that. > i now have a normal computer for a router. > But normal is so dull :) -- Ian Truelsen Email: [EMAIL PROTECTED] AIM: ihtruelsen Homepage: http://www.ihtruelsen.dyndns.org Signature key (742B740D) available at pgp.mit.edu
pgp00000.pgp
Description: PGP signature