Booting to CD and the handing off to HD

Nathan Kinkade nkinkade at ub.edu.bz
Tue Oct 5 09:17:11 PDT 2004 

On Mon, Oct 04, 2004 at 09:23:31PM -0700, Cristobal Miguelo wrote:
> > > On Sun, Oct 03, 2004 at 08:58:05PM -0700, Cristobal Miguelo wrote:
> > > Hello,
> > > 
> > > I'm going to be working on a firewall box where I want to boot to
> > > CD and run an integrity check on the Hard Drive.  If the Hard
> > > Drive checks out OK, I want the CD to then hand off to the hard
> > > drive and boot the hard drive.
> > > 
> > > Is that possible?   What man pages and/or web pages should I read
> > > to make it happen?
> > > 
> > > Thanks!
> > > Cristobal
> > 
> >
> > Well, you could certainly mount the harddisk partitions somewhere in
> > the filesystem while running under the CDROM booted kernel.
> > However, I seriously doubt if you could change the running kernel to
> > that from the harddisk.  Why not just reboot to the harddisk after
> > you have finished your diagnostics with the CDROM?
> > 
> > Nathan
> > 
> >
>
> Thanks for the response!
> 
> I would like to have it completely automated:
> 
> The machine goes down at 4am for the check and boots to cd, then the cd
> controls the hand-off to the hard drive.  I'd like to have the BIOS
> setup to only boot the cd and if the HD checks out ok, boot up the HD. 
> That way there is a slim chance that any security breach will last
> beyond one night on my machine.  I seriously doubt a security breach
> will occur, but I want to close every door imaginable.
> 
> Anything else that could be done?
> 
> Thx
> -C
> 

What is the reason that you find it necessary to reboot the machine to a
CDROM every morning?  Are you sure that there isn't a way to run your
checks while booted to the harddisk?  I am fairly sure that you will
never find a way to have the BIOS selectively boot either the CDROM or
the HD based on some OS specific factor, such as a successful check of
the HD.  I have a feeling that there may be a better way to accomplish
your goal without a reboot to CDROM every morning.  Will you tell the
list more about what you are trying to accompish?

Nathan
-- 
PGP Public Key: pgp.mit.edu:11371/pks/lookup?op=get&search=0xD8527E49
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20041005/065f77e3/attachment.bin

More information about the freebsd-questions mailing list