Haven’t used it myself, but maybe QubesOS? Seems similar to what you’re describing.
this post was submitted on 20 Dec 2024
25 points (96.3% liked)
Linux
8298 readers
140 users here now
Welcome to c/linux!
Welcome to our thriving Linux community! Whether you're a seasoned Linux enthusiast or just starting your journey, we're excited to have you here. Explore, learn, and collaborate with like-minded individuals who share a passion for open-source software and the endless possibilities it offers. Together, let's dive into the world of Linux and embrace the power of freedom, customization, and innovation. Enjoy your stay and feel free to join the vibrant discussions that await you!
Rules:
-
Stay on topic: Posts and discussions should be related to Linux, open source software, and related technologies.
-
Be respectful: Treat fellow community members with respect and courtesy.
-
Quality over quantity: Share informative and thought-provoking content.
-
No spam or self-promotion: Avoid excessive self-promotion or spamming.
-
No NSFW adult content
-
Follow general lemmy guidelines.
founded 2 years ago
MODERATORS
We used to use virtual box on windows with an immutable hard disk to boot the environment with storage, for persistence, elsewhere (usb for example) if required. Just used standard ubuntu for the guest distro.
Once you shut down the VM the vhd reverts to as installed. It's a bit painful distributing the system but can be done.
You can prevent ordinary users messing with the immutable setting as well if that is a concern.
Your "or something" confuses me. It's either a machine that forgets, or it isn't. USB drives are a good idea, but it they aren't allowed, then I don't see how you can accomplish this.
Is an encrypted persistent share that requires a manual password sufficient?
I think your options are
- Normal, bog-standard persistence (no special security)
- Persistence only on USB
- Persistence only on a network-mounted share
- Persistence in an encrypted share
- No persistence
Just dd any ISOHybrid to an internal disk.
Something like LPS/TENS would fit your needs exactly, but it stopped being supported in 2021. It was essentially Tails but was built to be run from a wide verity of sources (we used to network boot onto PCs that had no hard drives at all, but had local network share access).
Knoppix used to do this. Not sure if it's still around.
Another approach is to stop access to exfilltration routes like USB and network.
Yes, it's still around: KNOPPER.NET – KNOPPIX, although the "latest" version dates to 2021.
Oh wow this brings back memories when we had to verify that hard drives were wiped successfully before disposal and we used knoppix on live CDs. Good to see that it somehow still lives.
niiice, I hadn't heard of Knoppix in years! I'll add that to the list for assessing today! thanks!
You probably want someone with some knowledge and experience as this sounds like something that could easy be screwed up. You don't want to just install some run of the mill distro and call it a day for many reasons. What industry is this and what are the requirements?
I would ask on [email protected] since the people here may or may not have much business experience. The Linux community is notorious for good intentioned but ultimately poor recommendations.
That's not what immutable distros are
oh awesome! I had no idea there were so many. I'll have the team start assessing some of these