On Sun, 2002-06-30 at 05:07, Manfred Schuler wrote: > I followed the threads on hardware-wp. The last > information I read was that you have to do some > SMD soldering to get the write protection feature. > I think that this is not well suited for many > people as you need some soldering experience to > do this.
Manfred, You are correct on both points. > The last information i got from apacer is that > it is possible to write protect the device, but > they don't sell devices with write protection as > there are not enough customers to request this > feature. I believe Apacer is talking about the version with the zero ohm resister build time option enabled on the ATA-Disk Module. I have the standard version without the build time option. My father and I are going to attempt post purchase modification of this module to enable write-protect. > Also I am a little bit astonished as all people > on the list agree that any additional level of > protection is an improvement. But in the discussion > about software-wp people argument as if it would > make things worse. We've lived with hardware write-protection for a long time, and we know it works. There is usually resistance to change, but it's rarely insurmountable. > I still think it is an improvement of security to > protect the ramdisk and to restrict access to the > boot device as far as possible. This increases the > required skills of an intruder and also the chances > to detect an intruder. > If you check the mounting options of the ramdisks > every second, an intruder has only one second to > compromise the system and to install and run the > tools to hide the intrusion. > > The protection can completely be done in a package. > A few changes (make /var a seperate file system, > separate mount from busybox) in the base system > would make things easier and do no harm to the > system. The user can then decide to use the package > or not. > > I'm short of free time at the moment, but maybe in > the next weeks I get the occasion to make a > beta-version of this package. I will post then the > information on the list when it is available. Please do. It's always worthwhile to look at new ideas. Please post your package information on the devel list when it's ready. -- Mike Noyes <[EMAIL PROTECTED]> http://sourceforge.net/users/mhnoyes/ http://leaf-project.org/ ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Leaf-devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-devel
