Site Map - skip to main content

Hacker Public Radio

Your ideas, projects, opinions - podcasted.

New episodes Monday through Friday.


hpr3119 :: Converting to FFS2

FFS2, FuguIta encryption and UUID's and 9 volt batteries

<< First, < Previous, Latest >>

Host Image
Hosted by Zen_Floater2 on 2020-07-16 is flagged as Clean and is released under a CC-BY-SA license.
Tags: FFS2, SD cards, OpenBSD.
Listen in ogg, spx, or mp3 format. | Comments (2)

I talk about converting my I386 Dell Mini 10 running OpenBSD6.7 to the new FFS2 file system. I also talk about the two new features of FuguIta 6.7 which are data encryption and the use of UUID's in the noasks file which is used for automatic booting. I also talk about 9 volt batteries and high technology transistor radios. I am also surprised by an SD card discovery I found on my Dell Mini 10.


Comments

Subscribe to the comments RSS feed.

Comment #1 posted on 2020-07-22T23:55:30Z by an anonymous listener

security is hard

I think you overstated the security aspect of read-only filesystems. Even if you set it to read-only at the block device level, it won't stop a rootkit or kernel exploit from writing to the drive. Some USB drives, SD cards, and occasionally hard drives, claim to support device level read-only mode, but even then, they almost all have writable firmware that could be maliciously modified by software on the host (see BadUSB). The only consumer hardware I know of that supports anything close to physical write protection is the CD-ROM, and even most CD-ROM drives keep their firmware on a writable flash chip.

Most of these are advanced attacks that average person will ever have to worry about, but worth keeping in mind. Read-only root filesystems are mainly meant for resilience against power failures and simple unprivileged malware, but it's not meant to provide any true security against sophisticated attacks. That's why we have UEFI SecureBoot.

Comment #2 posted on 2020-07-29T12:54:32Z by Gumnos

OpenBSD on a Mini10

I've got OpenBSD on a Mini10 as well (love it) but the graphics are slow on the GMA500 chip (no Polsulbo driver so it falls back to using VESA). Does yours have the same chipset and did you find accelerated drivers for it? Or do you just use it at the console (where it's pretty snappy).

I've upgraded mine to the maximum 2GB of RAM. put a newer SSD in it, and replaced the BCM wireless card (which never worked reliably) with an Atheros. But it's a wonderful little unit.

Thanks for the episode!

<< First, < Previous, Latest >>

Leave Comment

Note to Verbose Commenters
If you can't fit everything you want to say in the comment below then you really should record a response show instead.

Note to Spammers
All comments are moderated. All links are checked by humans. We strip out all html. Feel free to record a show about yourself, or your industry, or any other topic we may find interesting. We also check shows for spam :).

Provide feedback
Your Name/Handle:
Title:
Comment:
Anti Spam Question: What does the P in HPR stand for ?