Marghanita, Looks like an interesting distro, and obviously there is a good use case for military personnel needing to use untrusted PCs on a untrusted network.
What I find curious though, from just a quick observation, is that I couldn't see how they can ensure their customers that you have the genuine article. While they are publishing MD5 hashes for the ISO, your only test that they are genuine is that you have used the .mil URL to access them. They haven't put these behind a SSL protected web-site or other chain-of-trust that gives you assurance that the hashes or ISOs have become compromised. (In other words if someone is doing either a DNS or HTTP man-in-the-middle attack you wouldn't know). (And of course, I'm wondering if anyone has looked into this in detail to determine if it "phone's home" ;-) ) Regards, Martin martinvisse...@gmail.com 2011/8/3 Marghanita da Cruz <marghan...@ramin.com.au> > 15 June 2011: LPS-Remote Access was certified by AFNIC to connect to the >> GIG for general telecommuting use. >> > ... > >> LPS differs from traditional operating systems in that it isn't >> continually patched. LPS is designed to run from read-only media and without >> any persistent storage. Any malware that might infect a computer can only >> run within that session. A user can improve security by rebooting between >> sessions, or when about to undertake a sensitive transaction. For example, >> boot LPS immediately before performing any online banking transactions. LPS >> should also be rebooted immediately after visiting any risky web sites, or >> when the user has reason to suspect malware might have been loaded. In any >> event, rebooting when idle is an effective strategy to ensure a clean >> computing session. LPS is updated on a regular basis (at least quarterly >> patch and maintenance releases). Update to the latest versions to have the >> latest protection. >> >> To get started, download the LPS-Public ISO image and burn it to a CD. >> Read the Quick Start Guide for more information. >> > <http://www.spi.dod.mil/**lipose.htm <http://www.spi.dod.mil/lipose.htm>> > -- > Marghanita da Cruz > http://ramin.com.au > Tel: 0414-869202 > > > -- > SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ > Subscription info and FAQs: > http://slug.org.au/faq/**mailinglists.html<http://slug.org.au/faq/mailinglists.html> > -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
