Does the Puppy's Security Model Still Make Sense in 2021?
Posted: Sat Jun 12, 2021 2:58 am
This question was originally asked back in 2013:
Discussion, talk and tips
https://forum.puppylinux.com/
This question was originally asked back in 2013:
Puppy Linux's use of the unionfs/aufs stacking file systems keep all but recently altered files on read-only layers. This provides an "undo" capability that allows easier restoration of the entire system to a known-good condition. As a last resort, the original system as distributed is kept on the bottom read-only layer where it can be rebooted to while preserving subsequent changes on the upper layers.
One of the reasons I prefer Puppy in a frugal install environment and if I am say super worried about exploits (I am not), then I have the choice to not save any changes and run a fresh copy of Puppy each time it is booted up with no savefile or savefolder same with the Dogs. Try doing that with the "Big Boy" Distros where running as a normal user is supposed to protect you from exploits.
Please read the following thread very interesting reading.
darry19662018 wrote: Sat Jun 12, 2021 3:54 amPuppy Linux's use of the unionfs/aufs stacking file systems keep all but recently altered files on read-only layers. This provides an "undo" capability that allows easier restoration of the entire system to a known-good condition. As a last resort, the original system as distributed is kept on the bottom read-only layer where it can be rebooted to while preserving subsequent changes on the upper layers.
One of the reasons I prefer Puppy in a frugal install environment and if I am say super worried about exploits (I am not), then I have the choice to not save any changes and run a fresh copy of Puppy each time it is booted up with no savefile or savefolder same with the Dogs. Try doing that with the "Big Boy" Distros where running as a normal user is supposed to protect you from exploits.
Please read the following thread very interesting reading.
As far as I experience, an option not to save (PUPMODE=13) is only applicable to any changes made or happened in the "GUI" mode (i.e. PPM). If we install a package thru terminal, it's persistent.
Well, the "old skool" method still is relevant, albeit using a DVD for larger pups. Run Puppy off the CD/DVD. Shutdown/NO save when done. Nonetheless, make some shanges to the browser like no autocomplete/look-ahead, and make duckduckgo the default search, removing all others. Addons like uBlock, ClearURL, and CSSexfil are still needed while on-line.
8Geee