From owner-freebsd-questions@FreeBSD.ORG Tue Oct 5 16:17:11 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BEC9916A4CE for ; Tue, 5 Oct 2004 16:17:11 +0000 (GMT) Received: from out2.smtp.messagingengine.com (out2.smtp.messagingengine.com [66.111.4.26]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5B36B43D48 for ; Tue, 5 Oct 2004 16:17:10 +0000 (GMT) (envelope-from nkinkade@fastmail.fm) Received: from frontend2.messagingengine.com (frontend2.internal [10.202.2.151]) by frontend1.messagingengine.com (Postfix) with ESMTP id 8A5FCC2F383; Tue, 5 Oct 2004 12:17:06 -0400 (EDT) X-Sasl-enc: UAuwvUSIwbQTzAErOtjnHg 1096992929 Received: from gentoo-npk.bmp.ub (unknown [206.27.244.136]) by www.fastmail.fm (Postfix) with ESMTP id 4F87A56ED87; Tue, 5 Oct 2004 12:15:29 -0400 (EDT) Received: from nkinkade by gentoo-npk.bmp.ub with local (Exim 4.21) id 1CErvl-0001cI-VH; Tue, 05 Oct 2004 10:12:49 -0600 Date: Tue, 5 Oct 2004 10:12:49 -0600 From: Nathan Kinkade To: Cristobal Miguelo Message-ID: <20041005161249.GX3633@gentoo-npk.bmp.ub> Mail-Followup-To: Cristobal Miguelo , freebsd-questions@freebsd.org References: <20041004163650.GM3633@gentoo-npk.bmp.ub> <20041005042331.14030.qmail@web53801.mail.yahoo.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="zHuqcmpxcmc4O8tc" Content-Disposition: inline In-Reply-To: <20041005042331.14030.qmail@web53801.mail.yahoo.com> User-Agent: Mutt/1.5.6i Sender: cc: freebsd-questions@freebsd.org Subject: Re: Booting to CD and the handing off to HD X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Nathan Kinkade List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Oct 2004 16:17:11 -0000 --zHuqcmpxcmc4O8tc Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Oct 04, 2004 at 09:23:31PM -0700, Cristobal Miguelo wrote: > > > On Sun, Oct 03, 2004 at 08:58:05PM -0700, Cristobal Miguelo wrote: > > > Hello, > > >=20 > > > I'm going to be working on a firewall box where I want to boot to > > > CD and run an integrity check on the Hard Drive. If the Hard > > > Drive checks out OK, I want the CD to then hand off to the hard > > > drive and boot the hard drive. > > >=20 > > > Is that possible? What man pages and/or web pages should I read > > > to make it happen? > > >=20 > > > Thanks! > > > Cristobal > >=20 > > > > Well, you could certainly mount the harddisk partitions somewhere in > > the filesystem while running under the CDROM booted kernel. > > However, I seriously doubt if you could change the running kernel to > > that from the harddisk. Why not just reboot to the harddisk after > > you have finished your diagnostics with the CDROM? > >=20 > > Nathan > >=20 > > > > Thanks for the response! >=20 > I would like to have it completely automated: >=20 > The machine goes down at 4am for the check and boots to cd, then the cd > controls the hand-off to the hard drive. I'd like to have the BIOS > setup to only boot the cd and if the HD checks out ok, boot up the HD.=20 > That way there is a slim chance that any security breach will last > beyond one night on my machine. I seriously doubt a security breach > will occur, but I want to close every door imaginable. >=20 > Anything else that could be done? >=20 > Thx > -C >=20 What is the reason that you find it necessary to reboot the machine to a CDROM every morning? Are you sure that there isn't a way to run your checks while booted to the harddisk? I am fairly sure that you will never find a way to have the BIOS selectively boot either the CDROM or the HD based on some OS specific factor, such as a successful check of the HD. I have a feeling that there may be a better way to accomplish your goal without a reboot to CDROM every morning. Will you tell the list more about what you are trying to accompish? Nathan --=20 PGP Public Key: pgp.mit.edu:11371/pks/lookup?op=3Dget&search=3D0xD8527E49 --zHuqcmpxcmc4O8tc Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFBYsgBO0ZIEthSfkkRAv/4AJ9hgg3OskeoQpFwBgLyhlCQ7dbcMQCg8Ioy UZfhCckWrhjKyD0A2tH4dzs= =Wg2Q -----END PGP SIGNATURE----- --zHuqcmpxcmc4O8tc--