Slashdot Mirror

← Back to Stories (view on slashdot.org)

A Linux Distro From the US Department of Defense

Posted by timothy on from the buggy-whip-for-the-bandwagon dept.

donadony writes "The Lightweight Portable Security distribution was created by the Software Protection Initiative under the direction of the Air Force Research Laboratory and the U.S. Department Of Defense. The idea behind it is that government workers can use a CD-ROM or USB stick to boot into a tamper proof, pristine desktop when using insecure computers such as those available in hotels or a worker's own home. The environment that it offers should be largely resistant to Internet-borne security threats such as viruses and spyware, particularly when launched from read-only media such as a CDROM. The LPS system does not mount the hard drive of the host machine, so leaves no trace of the user's activities behind."

2 of 210 comments (clear)

  1. Re:Oh, it get's WORSE! by LordLimecat · · Score: 3, Interesting

    BRILLIANT! That means that any flaws in your OS or applications (web browser) WON'T BE PATCHED

    Which isnt really an issue for several reasons:
    A) most of the code out there isnt targetting some obscure form of linux
    B) this is a live distro, so there is no permenant storage, so no real worry of a rootkit
    C) someone booting up this distro is unlikely to be doing so for reasons that would expose him to threats

    Hence the lack of caring about /etc/passwd, or running as root, or all the rest. Its generally irrelevant on a live distro because you cannot get rootkitted.

  2. Re:Wont work in hotels, airports, etc. by lostfayth · · Score: 3, Interesting

    I used to work in the hospitality industry as well - the company installed, maintained and supported guest internet access for hotels and transit companies (we had several bus and rail contracts). For the locations with a lot of government or corporate guests, standing orders from the hotel management was to do whatever was necessary to get these guests online. Lockheed-Martin employees were one of our biggest sources of calls, their vpn would not let them reach the captive portals and they had to be passed through manually. Many government employees and contractors had exactly the same problem. Anyone else would be told to contact their IT department to sort that mess out.

    Don't underestimate what hotels will do to accomidate what may be one of their largest customer groups. When a company like Lockheed-Martin says fix this or our employees will no longer be staying at your hotel, you fix their complaint, you don't tell them 'but we locked down that functionality' and lose 80+% of your business.