Just another WordPress weblog
Verantwortlich für den Inhalt dieser Seite ist Mattias Schlenker, Inhaber Mattias Schlenker IT-Consulting Mattias Schlenker work August-Bebel-Str. 74, 04275 Leipzig, Germany. work Phone: +49 341 39290767. work Email: email@example.com. Meine Umsatzsteuer-ID (VATIN) lautet DE240998538. http://www.mattiasschlenker.de
We made some progress in both handling of BLOBs (binary large objects, programs like Google Chrome or TeamViewer that are only available as binary packages. A new feature is the integration of OpenVAS, a vulnerability scanner to detect unsafe devices in your networks. I am especially proud for my wrapper script to start OpenVAS: This does all necessary preparation work, so you do not have to manually download vulnerability definitions or rebuild databases. However, OpenVAS is still fat and occupies more than 1.2GB RAM when started from DVD! So, some preparation is recommended.
I just uploaded an image that fixes BLOB support. To use it:
Besides this, Thunderbird and Firefox both got updated to 31.1.0, the kernel received a smaller upgrade to 3.16.2. The tools for acessing disk drives now use a different architecture. mmcblk devices (some card readers) are now recognized correctly, it works a bit faster and should be easier to integrate with upcoming releases of SaferSurf.
About one and a half years ago I started implementing suport for the possibility to persistently add binary applications to LessLinux. This enables adding closed source binary only software without polluting the open source build tree. BLOB support was used in a commercial derivative to include TeamViewer. Now it is also possible to add Google Chrome – quite some users requested this feature since Chrome has very good multimedia support and implements a remote desktop solution.
I just finished initial tests on a fresh development build for LessLinux Search and Rescue. Kernel is 3.15.9 and more than 100 packages have been updated. This thing feels quite stable, but there are reasons not to mark it stable yet:
Booting via HTTP or FTP will fail with this image since the tmpfs where the ISO is stored is too small. This will soon be fixed in upcoming images by providing an appropriate cheat code.
The BusyBox 1.21.1 built against uClibc has been replaced by BusyBox 1.22.1 linked against musl-libc – this should allow some cleanups in all init scripts as well as removing the statically linked modprobe binary in the initramfs.
There are a few statically linked (against glibc) binaries in the initramfs currently that either will be moved to musl or entirely removed. The new update procedure might allow the removal of xdelta3 from the initramfs for example.
Of course kernel 3.16 has to be added and tested. Expect this to happen with 3.16.1
But for most usage scenarios this unstable build will perform better and more stable than recent stable versions. Escpecially when booted from DVD or USB. Now, go, grab it here:
Sorry, no English version yet. You may run “LessLinux Safersurf” in English by changing lang=de to lang=en, but some tools will still use german localization, international builds will follow.
Leser einiger deutscher Computerzeitschriften kennen meine Systeme zum “Sicheren Surfen”. Den Anfang machte das 2009 und 2010 zusammen mit dem BSI entwickelte System “COMPUTER BILD Sicher Surfen”, nach 2011 wurde es etwas still um dieses System, bis mit der NSA-Affäre das Interesse stieg. Ich habe mich daher zur Veröffentlichung einer reinen Open Source Variante entschieden. Wie bisher ist eine Kernkomponente für erhöhte Sicherheit die Verwendung von Mandatory Access Control: Das sorgt dafür, dass nur wenige Prozesse aufs Internet zugreifen dürfen und Prozesse, die aufs Internet zugreifen, dürfen nur eine kleine Auswahl anderer Prozesse starten. Weitere Sicherheitsmerkmale betreffen das Dateisystem: Sowohl das persistent gehaltene Heimatverzeichnis als auch der Auslagerungsspeicher werden stark verschlüsselt.
Das System ist dazu gedacht, auf einen wenigstens 8GB großen USB-Stick installiert zu werden, unter Windows sollte hierfür der Win32DiskImager verwendet werden.
I just finished building a fresh unstable using kernel 3.15.4. During the boot process no legacy map files for kernel modules are used anymore. So please tell me should booting from USB fail. A major change is that the stage03 build command and git SHA1SUM are now available in /etc/lesslinux/updater (look at the screenshot). This makes checking out corresponding sources and building modified ISOs much easier.
I am proud to announce a new series. This is called “big fall full” – codenamed “Jabba”. It solves two purposes:
The second big change is that LessLinux development now takes place completely on GitHub. Scroll down to read how these two news fit together seamlessly!
Of course you can use the Jabba builds as rescue system as well or as a nice replacement for the now defunct LFS Live CD, to start building LFS even when you do not have Linux system installed on some hard drive. Jabba builds will be released after major architectural changes or updates of core components like the used default compiler or the C library. This means mandatory releases every six to nine months and maybe convenience releases after updating kernels.
Jabba intentionally uses a really minimalistic user interface. After booting, the GUI consists of just two terminals, one with root privileges and one as normal user. You might start an XFCE- or LXQT-panel, but be warned: there might be many duplicate or non-functional entries in the menus. Thus it is easier most of the time to start needed programs by hand.
I am proud to announce a fresh stable release of LessLinux Search and Rescue. This is basically a refinement of the May, 29th release and as such it does not pack many new features. New and untested is the inclusion of libbde, a library to access and mount Bitlocker encrypted drives (Windows Vista and above).
Download this build here: lesslinux-search-and-rescue/lesslinux-search-and-rescue-uluru-20140612-152957.iso
During the next days I will add an automatic update from the latest stable build and the build currently on PC Magazin as covermount DVD.
The next builds will move to Linux 3.15.x which starts a new unstable series. In the meantime building on the RaspberryPi progresses, so I am quite confident that in early June the first builds of LessLinux as thin client will be ready.
Here we go with a fresh development build. The build and the included software is quite stable, but menus, themes and small stuff need lots of cleanup. Xorg moved to 1.15 and Mesa to 10.1. This allowed inclusion of some games like Quadrapassel that I like to play during data rescue or forensic sessions. A few changes had to be made to be able to compile everything against Glibc 2.19 and Glib 2.40. Some old software that refused to compile against Glib 2.40 was retired, other programs were patched. The kernel used is 3.14.4. More than 150 packages have been update. Cool thing: LXQT has been added. To use it, pass
to the boot command line. It is quite usable but needs some polishing. Connman is included and totally usable if started from the command line. Unfortunately the Connman Gtk+ user interface is affected by a Gtk+. I am quite sure we can fix this for the next stable and then use Connman to replace Wicd. Everyone loves screenshots:
And do not forget the download link: lesslinux-search-and-rescue-uluru-20140528-080923.iso