<div dir="ltr">Hi Jonas and Alan,<br><br>I agree with your thoughts here.  Certainly the distribution we use should not make it easy to see the host computer's hard-drive.<br><br>A harder problem is someone booting up with a different boot USB/CD.  Most of the school computers I have met already allow boot by CD so that risk is already there.  However, it would be good to think about how we can minimize the risk to the network.<br> <br>Thanks,<br>Caroline<br><br><div class="gmail_quote">On Wed, Oct 1, 2008 at 7:46 AM, Jonas Smedegaard <span dir="ltr"><<a href="mailto:dr@jones.dk">dr@jones.dk</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"> -----BEGIN PGP SIGNED MESSAGE-----<br> Hash: SHA1<br> <div class="Ih2E3d"><br> On Wed, Oct 01, 2008 at 11:19:10AM +0100, alan c wrote:<br> >Caroline Meeks wrote:<br> >> On Tue, Sep 30, 2008 at 10:48 AM, Walter Bender<br> >> <<a href="mailto:walter.bender@gmail.com">walter.bender@gmail.com</a>>wrote:<br> >><br> >>>  David and I will be helping set up a Sugar classroom in a Boston<br> >>> public school that trying to make use of some old Pentium IV desktop<br> >>> machines;<br> <br> </div><div class="Ih2E3d">>> When schools, children's libraries, and after-school programs have<br> >> computers and they can be changed to boot from the USB it's likely<br> >> that the tech people will be willing to do so.<br> <br> </div><div class="Ih2E3d">>I have a passing thought - which others may already have considered<br> >anyway.<br> ><br> >In principle, when booting from a device and running a linux based OS,<br> >it is usually possible to obtain control of the host hardware somehow,<br> >for example by use of a terminal. I trust that whatever (high?) skill<br> >level the usb stick user has, it will not be technically possible to<br> >damage the host system's data?<br> <br> </div>I suspect that to be technically impossible to guarantee.<br> <br> E.g. how to ensure that the system booted from that stick is not a<br> derivation with "evil" formatting tool added?<br> <br> But relevant any way to be aware of, to at least make _difficult_ to<br> wreak havoc (or worse: be able to do damage even by accident).<br> <br> <br>  - Jonas<br> <br> - --<br> * Jonas Smedegaard - idealist og Internet-arkitekt<br> * Tlf.: +45 40843136  Website: <a href="http://dr.jones.dk/" target="_blank">http://dr.jones.dk/</a><br> <br>  [x] quote me freely  [ ] ask before reusing  [ ] keep private<br> -----BEGIN PGP SIGNATURE-----<br> Version: GnuPG v1.4.9 (GNU/Linux)<br> <br> iEYEARECAAYFAkjjYywACgkQn7DbMsAkQLi3EACcC14wrLqevvNDEa71Zecbe2xO<br> qwcAnidyrHguf8K3v++cTJo61zrOgQDc<br> =0Eew<br> -----END PGP SIGNATURE-----<br> <div><div></div><div class="Wj3C7c">_______________________________________________<br> IAEP -- It's An Education Project (not a laptop project!)<br> <a href="mailto:IAEP@lists.sugarlabs.org">IAEP@lists.sugarlabs.org</a><br> <a href="http://lists.sugarlabs.org/listinfo/iaep" target="_blank">http://lists.sugarlabs.org/listinfo/iaep</a><br> </div></div></blockquote></div><br><br clear="all"><br>-- <br>Caroline Meeks<br>Solution Grove<br>Caroline@SolutionGrove.com<br><br>617-500-3488 - Office<br>505-213-3268 - Fax<br> </div>