-
March 25th, 2007, 08:38 PM
#11
Member
Hi,
But with a windows OS, DOS isn't at least required? Ok, I wasn't aware of that.
Does windows come on a live cd []?
-
March 26th, 2007, 09:51 AM
#12
Junior Member
Nope only linux and some versions of bsd do this.
Thanks
Linux Registered User# 363317
"Every normal man must be tempted at times to spit upon his hands, hoist the black flag, and begin slitting throats." -- H.L. Mencken
Arch-64 Linux
securitybreach<at>archlinux.us
-
March 26th, 2007, 10:07 AM
#13
Member
yes you can make windows live CD using bartpe or winpe..with xp SP2, you can add recovery programs, antiviurs and all other useful application.
i have done my cd with these programs.
MS OFFICE
KASPERSKEY ANTIVIRUS
NERO
AV PERSONAL
IP SCAN
PUTTY
PQ MAGIC
GET DATABACK
EASY RECOVERY
ADMIN PASS RECOVERY
ACRONIS
you can download ready cd from ultimate boot cd. it comes with all free programs.
one of the great day in my life when i found antionline.com
-
March 27th, 2007, 03:46 PM
#14
Originally Posted by pbrprince
yes you can make windows live CD using bartpe or winpe..with xp SP2, you can add recovery programs, antiviurs and all other useful application.
i have done my cd with these programs.
MS OFFICE
KASPERSKEY ANTIVIRUS
NERO
AV PERSONAL
IP SCAN
PUTTY
PQ MAGIC
GET DATABACK
EASY RECOVERY
ADMIN PASS RECOVERY
ACRONIS
you can download ready cd from ultimate boot cd. it comes with all free programs.
Is it really a live verson of the OS? Or simply a Pre Boot Environment with some software?
Real security doesn't come with an installer.
-
April 2nd, 2007, 04:11 AM
#15
This thread made me laugh out loud.
Services are NOT more secure just because its running off a liveCD. All that means is that your liability of a fscked up harddrive dissapears.
Example:
You have ArchLinux 0.8 installed on your harddrive and run an sshd. The version of ssh you're using is: OpenSSH_4.6p1, OpenSSL 0.9.8e. This version has a remote exploit out that allows an attacker to execute arbitrary commands on the OS running that version of the daemon. Conclusion: you are fscked.
Example 2:
You have a LiveCD popped in and you decide to run a ssh daemon and have some users on it. You don't have a harddrive in the machine, just a motherboard, RAM, and a CDROM. The version of ssh you are using is: OpenSSH_4.6p1, OpenSSL 0.9.8e. This version has a remote exploit out that allows an attacker to execute arbitrary commands on the OS running that version of the daemon. Conclusion: you are fscked.
...This Space For Rent.
-[WebCarnage]
-
April 2nd, 2007, 08:08 AM
#16
Member
its a live cd, you can run winxp sp2 with this cd, even if you dont have hard disk. you can use DVD if you have more programs then 650 mb.
its useful in admin pass recovery, virus scan, data recovery..etc
one of the great day in my life when i found antionline.com
-
April 2nd, 2007, 09:04 AM
#17
Originally Posted by [WebCarnage]
Example:
You have ArchLinux 0.8 installed on your harddrive and run an sshd. The version of ssh you're using is: OpenSSH_4.6p1, OpenSSL 0.9.8e. ......Conclusion: you are fscked.
Example 2:
You have a LiveCD popped in and you decide to run a ssh daemon and have some users on it. You don't have a harddrive in the machine, just a motherboard, RAM, and a CDROM. .......Conclusion: you are fscked.
Yes, but example 1 worst case scenario for you is a complete reinstall of your OS or perhaps a hard drive full of horse porn or perhaps lots of log files indicating it was your PC that tried to ddos the president's laptop.
example 2: worst case scenario you reboot and all is well again. Of course, you can't patch your liveCD to stop the problem from occuring in the first place.
If the world doesn't stop annoying me I will name my kids ";DROP DATABASE;" and get revenge.
-
April 2nd, 2007, 04:31 PM
#18
Originally Posted by securitybreach
Nope only linux and some versions of bsd do this.
Thanks
No, Solaris does it too. I have it somewhere back in Michigan, there is a Solaris Live CD, which is not Linux and no longer BSD.
Also somewhere I've seen on here, there was a post about a Windows CD that would run the same way, though I personally haven't ever looked at it or used it so I wouldn't consider it fact.
Also FreeDOS BOOT works similar and could be considered live.
Joe:
Windows hasn't used DOS since.... 98? Something like that, I haven't used it in a while. The NT line removed it's reliance on DOS.
-
April 2nd, 2007, 04:33 PM
#19
Originally Posted by Aardpsymon
your PC that tried to ddos the president's laptop.
You can make a laptop attack an Etch-A-Sketch????????
-
April 3rd, 2007, 12:41 AM
#20
The last Windows version to use DOS was Win ME. It is pretty well hidden, but it is still there.
Win 3.1x was the last version to require a separate installation of DOS
Win 2000 and XP are DOS free.
EDIT: I find the original question a little confusing. As mentioned, if you are running something that is vulnerable then you are vulnerable. I could understand it better if you did it in conjunction with a password protected and encrypted hard drive?
Last edited by nihil; April 3rd, 2007 at 12:45 AM.
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|