OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Re: Q not found in the archives...
From: sigippWELLA.COM.BR
Date: Thu Jul 13 2000 - 12:22:11 CDT


Hi,

> Does anyone see any problems with this approach, e.g. mounting
> /dev/ram0 as /? I haven't tried it myself yet, so I just don't know.

Only two:

1. YouŽd need many many CDROMS. Imagine all those patches and configuration
modifications.
2. Until you restore the backup, the intruder has access. So how do you securely
detect an intruder? Or do you mean simply prophylactic restore all regularly
(once a day)?

Nevertheless a very interesting idea.

Greetings
Siegfried Gipp