List of Gentoo Linux derivatives

(Redirected from Tin Hat Linux)

This is a list of Gentoo Linux derivatives.

Gentoo family tree

Calculate Linux

edit

ChromiumOS and ChromeOS

edit

CloverOS

edit

CloverOS GNU/Linux was a Gentoo image (stage4) and binhost optimized for performance that aims to be both minimal and out of the box. It began in 2017. Main website is down as of 2022-02-01,[1] may no longer be active.[2]

Container Linux (formerly CoreOS)

edit

FireballISO

edit
FireballISO
DeveloperIndy
OS familyUnix-like
Working stateActive
Source modelOpen source
Kernel typeMonolithic (Linux)
LicenseSame as Gentoo Linux
Official websitefireballiso.sourceforge.net

FireballISO (or "Fireball") is a VMware virtual appliance that builds a security-hardened Live CD containing a stripped-down custom version of Gentoo Linux. The original intent of the project is focused on providing firewall and networking services to a network, but the appliance can be customized in almost limitless ways to build bootable ISOs that can do many different things. When burned to a CD-ROM, it will allow a perhaps otherwise unused, old computer to boot it and act as a network security device. It may also be used in a virtual environment as a secure cloud appliance. Notable features in the generated ISO include:

  • (Version 1.4) Encryption is now truly optional (there were issues with how 1.3 handled unencrypted builds). Many updates to Gentoo Hardened files, including compiler-provided increased stack protection. Extensive cleanups to build script; now supports "test" build which can be customized to make a different ISO than the "deployment" build, suitable for testing or other purposes. Many features removed (tunnels, DSL support, etc.) to make appliance more generic.
  • (Version 1.3) Except for the files required early in the boot process (such as the kernel and initramfs), the contents can now be optionally encrypted, which makes it much more difficult and time-consuming for someone that may steal the ISO to access the contents. Default encryption is 256-bit AES. See the documentation for issues related to encryption.
  • (Version 1.2) All programs updated and recompiled with Hardened Gentoo kernel and compiler toolchain, resulting in increased protection from several kinds of overflows and other security vulnerabilities.
  • IPv4 and IPv6 support
  • iptables and ip6tables firewalls
  • SSH server for full command-line access
  • DNS cache and DHCP server
  • tcpdump & other networking utilities
  • Perl and Python scripting languages
  • NTP client
  • Extremely customizable, just like a regular Gentoo Linux system
  • Unnecessary programs removed from generated ISO; can be customized for even smaller size
  • Low hardware requirements for ISO: Pentium computer with a CD-ROM drive capable of booting, and two network interface cards, or equivalent virtual environment. No hard disk, monitor, or keyboard is needed for the unencrypted configuration (though a monitor and keyboard might be useful for troubleshooting configurations as needed). A keyboard and monitor are required at start-up if encryption is used.

The virtual appliance can be updated just like a normal Gentoo system, allowing new Live CD images to be generated with the latest security fixes, bug corrections, additional features, and updated configurations. The Live CD should be re-generated as often as important changes are released by the authors of the various software packages it contains.

Release history

edit
  • Fireball Release 1 - March 3, 2009
  • Fireball Release 1.1 - June 22, 2009
  • Fireball Release 1.2 - December 30, 2010
  • Fireball Release 1.3 - January 13, 2012
  • Fireball Release 1.4 - March 6, 2015
  • Fireball Release 1.5 - June 9, 2017

Funtoo

edit
Funtoo Linux
DeveloperDaniel Robbins, Oleg Vinichenko, Funtoo Technologies
OS familyLinux (based on Gentoo Linux)
Working stateDiscontinued
Source modelOpen source
Initial release2008; 16 years ago (2008)
Latest releaseRolling release / 1.4
Update methodEmerge
Package managerPortage
PlatformsARM, IA-32, x86-64
Kernel typeMonolithic (Linux)
UserlandGNU
Default
user interface
Gnome, KDE Plasma, XFCE
LicenseFree software
and others licenses
Preceded by1.3
Official websitewww.funtoo.org

Funtoo Linux (/fʌnt/ fun-too) was a Linux distribution based on Gentoo Linux, created by Daniel Robbins (the founder and former project leader of Gentoo Linux) in 2008. It's developed by a core team of developers, and built around a basic vision of improving the core technologies previously used by Gentoo Linux.[3][4]

History

edit

In early 2008, Robbins proposed to resolve[5] the Gentoo Foundation problems.[6] But he had left the project in 2004, and his offer was refused.[7] The Funtoo project was born as an initiative to implement his vision, with aims to share innovations.[8]

On July 26th, 2024, Robbins announced on the official Funtoo website that he would shut down the whole project due to a lack of interest in it.[9]

Features

edit

Funtoo is a source based Linux distribution.

Core technologies

edit

Funtoo features in addition to native UTF-8 by default include:

Kits

edit

In July 2017 Funtoo switched from plain portage approach to splitting the portage tree into kits.[10] This should tie software updates together and help with the dependency problems of a rolling release distribution. Kits also are gaining maturity status as they are tested and as patches are applied.

Funtoo uses Git to store the Portage tree. The tree is split into kits now with meta-repo[11] being the repo holding all the kits as submodules.

Metro

edit

Metro[12] is an automatable software package for building stages used in installing Funtoo.

boot-update

edit

boot-update[13] provides a unified mechanism for configuring the GNU GRUB2 and GRUB Legacy boot loader versions.

Core networking

edit

Funtoo has its own core networking solution to allow users to simplify the creation of complex network interfaces based on pre-created profiles.[14]

Kernel

edit

Since May 2015 Funtoo offers a pre-built generic kernel with stage3.[15] Although Funtoo is a source-based distribution, it should be possible to use a prebuilt Linux kernel.[16] Funtoo no longer encourages the use of the Sabayon kernel; however, with many improvements to Funtoo's design and init process, one should be able to load a binary kernel plus initrd from a preferred distribution hosting a precompiled/preconfigured kernel. Ubuntu's kernel linux-3.2.0-17-generic has been tested and is known to work. This can benefit those who like to avoid building custom kernels. Using a generic kernel from another distribution should be straightforward if using boot-update Archived 2013-08-09 at the Wayback Machine.

Other differences

edit

The most marked difference between the two would be no systemd support in Funtoo, but still delivering for example a working Gnome desktop[17] without the systemd need.[18]

Incognito

edit

Nova

edit

Pentoo

edit

Sabayon Linux

edit

Redcore Linux

edit
Redcore Linux
Official website[1]

Tin Hat Linux

edit
Tin Hat Linux
 
DeveloperAnthony G. Basile, et al.
OS familyUnix-like
Working stateDiscontinued
Source modelOpen source
Latest release20150616 / June 16, 2015; 9 years ago (2015-06-16)
Available inMultilanguage
Package managerPortage
PlatformsIA-32, x86-64
Kernel typeMonolithic
Default
user interface
GNOME
LicenseVarious
Official websitetinhat.sourceforge.net

Tin Hat is a security-focused Linux distribution derived from Hardened Gentoo Linux. It aims to provide a very secure, stable, and fast desktop environment that lives purely in RAM.[19] Tin Hat boots from CD, or optionally from USB flash drive, but it does not mount any file system directly from the boot device.[19] Instead, Tin Hat employs a large SquashFS image from the boot device which expands into tmpfs upon booting. This makes for long boot times, but fast speeds during use.

Design goal

edit

The central design consideration in Tin Hat is to construct an operating system that can hide data from an attacker even if he has physical access to the computer.[19] Physical access to a computer with unencrypted filesystems does not secure the data and an attacker could easily retrieve the data. Encrypting the filesystem provides protection from such an attack, but many implementations of encryption do not hide the fact that data is encrypted on the filesystem. For example, the LUKS encryption system includes metadata which detail the block cipher and block cipher mode used in encryption. This information does not help the attacker decrypt the filesystem, but it does reveal that it contains encrypted data and not random data. However, Tin Hat stores its filesystem in the RAM, leaving no data in the computer's hard drive. If the user stores any data via a more permanent means than RAM, the encrypted data is indiscernible from random data.

Tin Hat's preferred method of encryption is via loop-aes v3.

Beyond these considerations, Tin Hat has to also protect against more common exploits based on networking or security holes in software. The hardening model chosen is PaX/Grsecurity which is already provided by the Hardened Gentoo project. Hardening of the kernel and the toolchain make most code-borne exploits less likely. A non-modular compiled kernel further frustrates the insertion of malicious kernel modules.[20]

Ututo

edit

VidaLinux

edit
VidaLinux
 
DeveloperVidalinux Desktop Project
OS familyUnix-like
Working stateAbandoned (2010)
Source modelOpen source
Kernel typeMonolithic kernel
LicenseVarious
Official websiteos.vidalinux.org[permanent dead link] (web archive)

VidaLinux (VLOS) was an operating system based on Gentoo Linux. A GNOME-based OS, VidaLinux installs with the Red Hat Anaconda installer. VidaLinux tries to provide most appropriate tools and support for home and office use, such as PPC support and RealPlayer.

History

edit

As of December 3, 2009, VLOS has been rebuilt with Daniel Robbins' fork of Gentoo Linux called Funtoo.[21]

Versions

edit

Vidalinux comes in two different flavors; one can be downloaded, while the other must be purchased. While the downloaded version technically has all the same software packages as the purchased version, the difference is that the purchased version (which can be bought for 25 USD) contains many binaries of often used programs, while the downloaded version forces the user to download ebuilds of these packages and build the binaries themselves, which requires more time.

Version History

edit
  • 1.0 October 4, 2004
  • 1.1 December 20, 2004
  • 1.2 August 1, 2005
  • 1.2.1 January 18, 2006
  • 1.2.1-r2 January 30, 2006
  • 1.3 18 October 2006


References

edit
  1. ^ "CloverOS GNU/Linux". Archived from the original on November 16, 2021. Retrieved August 21, 2024.
  2. ^ "cloveros · GitLab". Retrieved August 21, 2024.
  3. ^ "DistroWatch.com: Funtoo Linux". 17 December 2016. Retrieved 17 December 2016.
  4. ^ "Funtoo by Daniel Robbins: The Goal of Funtoo". Archived from the original on October 25, 2008. Retrieved December 19, 2019.
  5. ^ "Funtoo by Daniel Robbins: Here's my offer..." Archived from the original on January 13, 2008. Retrieved December 19, 2019.
  6. ^ "Funtoo by Daniel Robbins: And it gets worse..." Archived from the original on January 15, 2008. Retrieved December 19, 2019.
  7. ^ "Funtoo by Daniel Robbins: What to do?". Archived from the original on January 29, 2008. Retrieved December 19, 2019.
  8. ^ "Gentoo Creator Daniel Robbins: Making Linux Free and Flexible - Exclusives - LinuxInsider". www.linuxinsider.com. 11 June 2013.
  9. ^ "All Good Things Must Come to an End..." funtoo forums. 2024-07-26. Retrieved 2024-08-01.
  10. ^ "News:Kits are Go (Switch to Them!) - Funtoo". www.funtoo.org.
  11. ^ "funtoo/meta-repo". GitHub.
  12. ^ "Metro - Funtoo". www.funtoo.org. Archived from the original on 2013-08-08. Retrieved 2019-12-19.
  13. ^ "Package: Boot-Update (sys-boot/boot-update)". www.funtoo.org. Archived from the original on 2013-08-09. Retrieved 2019-12-19.
  14. ^ "funtoo Networking". www.funtoo.org. January 2020.
  15. ^ "Pre-built kernels!". funtoo forums. 12 May 2015.
  16. ^ "Funtoo Linux Kernels - Funtoo". www.funtoo.org. Archived from the original on 2013-08-06. Retrieved 2019-12-19.
  17. ^ Nestor, Marius. "Gentoo and Funtoo Linux Users Can Now Enjoy the GNOME Desktop Without systemd".
  18. ^ "News:Gnome-3.20 Update - Funtoo". www.funtoo.org.
  19. ^ a b c "Tin Hat". D'Youville College. Archived from the original on 2016-03-03. Retrieved 2019-12-19.
  20. ^ This section uses content from this page, where it is licensed under the GNU General Public License.
  21. ^ "Development Release: VLOS 2.0 Alpha 1".
edit