Archiso-live 20090605 Release
Changes since last release:
* larchin 6.1.2 works now. You will have to go to lxde desktop to use it though. Need at least 4GB to install the full archiso-live.
* Added baseonly option in english menu. This is so there is barebone install of archiso-live. Lxde is the default desktop cause xfce will not be in it. Need 2.5GB to install the barebone install.
Everything is up2date as of 4:00PM on 20090605.
root password is ArchLinux
arch password is arch
Here is the iso, md5, and package list.
Package changes are here.
Godane's Development Blog 
downloading it right now! I can’t wait to try it…
Wooooooooooooooooowwwwwwwwwww!!! Finally I got it to install and this baby is flying! Right now I am trying to do some clean-up and all I can say is that is working wordenful. I tried the other install as mentioned (/arch/archiso-setup) and it did the job nicely.
I will keep you informed with more opinions later…
Thanks, Godane…you are THE MAN!
-2501
what is the driver to watch Apple Movie trailers ??? It is asking for the plug-in.
thx
@2501
Glad that its working for you. I also found out that my problem with installing with xfce is do to gvfs. I just have it not install nautilus in the next release to not have gvfs.
I just notice the Apple Movie trailers don’t work too. I thought you could download them but i guess not. I try the libquicktime package and that didn’t do anything. You could try miro to see if there is a trailers RSS feed for apples trailers. If anything there should be movie trailers there somewhere.
I can watch Apple movie trailer on Zenwalk, Ubuntu and Fedora((actually it searches for the missing plugins if not
already installed)). If they did it, we can make it work too. I will be experimenting to see if I can make it work. For some reason, the Liveversion is able to play news videos from cnn.com but I am also having problems with it.
Anyway, not a big deal. I usually go to Reuters to watch the news since they have the best news articles. Overall, I am happy with it. It is simple and is not a memory hugger. Just beatiful!
-2501
The /arch/archiso-setup installer was excellent. My only problem was that I was installing GRUB in /dev/hda1 and it was not working. installed it in /de/sda ((first option)). After that was a piece of cake.
Funny…I installed libquicktime and now I can watch movies from Apple Movie Trailer site via mplayer-plugin. I did not do anything special…
-2501
Voila….problem solved regarding Apple Movie Trailer site…
just do this:
sudo pacman -S gecko-mediaplayer
that is all!
-2501
I also got a Firewall to work!
-2501
—
Source: http://www.cromwell-intl.com/security/linux-hardening.html
Protect your machine with iptables rules (Linux only)
———————————-Green———————————————————–
Everyone Assuming there is no reference to /etc/rc.d/rc.firewall in any existing boot script, do the following. And if there is a reference, then either remove those references or use a different name in the following.
1 — Start a firewall script:
touch /etc/rc.d/rc.firewall
chmod 700 /etc/rc.d/rc.firewall
2 — Let’s say your goal is:
* Let any system in the entire 128.46.0.0/16 IP block (128.46.0.1 through 128.46.255.254) connect to the SSH service.
* Also let the one system 44.48.40.12 connect to the SSH service.
* Let any system in the 128.46.144.0/24 subnet (128.46.144.1 through 128.46.144.254) connect to the HTTP and HTTPS service.
* Block all other attempts to connect to privileged TCP ports.
* Block all attempts to connect to privileged UDP ports.
Make it contain something like the following, modifying IP ranges and services, and adding ACCEPT lines as needed:
#!/bin/sh
# Flush any existing rules and set the default policies
iptables -F
iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -P FORWARD ACCEPT
# Accept anything from myself
iptables -A INPUT -s 127.0.0.1/32 –jump ACCEPT
# Allow myself to be a non-passive FTP client
iptables -A INPUT -p tcp –dport ftp-data –jump ACCEPT
# Do not allow a local user to connect to a remote Telnet
# server and thus give away login and password information:
iptables -A OUTPUT -p tcp –dport telnet –jump REJECT
# Accept SSH connections from 128.46.0.0/16 and 44.48.40.12
iptables -A INPUT -s 128.46.0.0/16 -p tcp –dport ssh –jump ACCEPT
iptables -A INPUT -s 44.48.40.12/32 -p tcp –dport ssh –jump ACCEPT
# Accept HTTP connections from 128.46.144.0/24
iptables -A INPUT -s 128.46.144.0/16 -p tcp –dport http –jump ACCEPT
iptables -A INPUT -s 128.46.144.0/16 -p tcp –dport https –jump ACCEPT
# If it’s not one of the above allowed cases, block connection
# attempts to privileged TCP and UDP ports.
#
# Send the client an ICMP Destination Unreachable (Port Unreachable)
# packet to be polite and allow its application to quickly shut
# down.
iptables -A INPUT -p tcp –dport 1:1023 –jump REJECT
iptables -A INPUT -p udp –dport 1:1023 –jump REJECT
# If you want to allow this machine to be a client,
# uncomment the following command:
# iptables -A INPUT -m conntrack –ctstate RELATED,ESTABLISHED -j ACCEPT
# Otherwise, drop inbound TCP packets with ICMP messages
iptables -A INPUT -p tcp –jump REJECT
# Report what happened
echo ‘Firewall rules installed:’
iptables -L
3 — Experiment with running that script directly and testing.
3 — When you are certain it works, add a line to the end of /etc/rc.d/rc.local:
/etc/rc.d/rc.firewall
——————————-Red — paranoid—————————————-
As above, but change the next-to-last block of code to the following (DROP vs REJECT):
# If it’s not one of the above allowed cases, block connection
# attempts to privileged TCP and UDP ports.
#
# Silently drop unwanted packets to waste the attacker’s time.
iptables -A INPUT -p tcp –dport 1:1023 –jump DROP
iptables -A INPUT -p udp –dport 1:1023 –jump DROP
——————————-Also—————————————————–
This should provide you with a very basic firewall:
Code:
iptables -A INPUT -m state –state RELATED,ESTABLISHED -j ACCEPT
iptables -P INPUT DROP
Those iptables-rules will make the system appear invisible to all machines on the network, unless you connect to them. Note that this will stop you from running a server on the local network, and might also interfere with some file sharing applications etc.
Put this snippet of code in /etc/rc.local in order to enable spoof protection:
Code:
for f in /proc/sys/net/ipv4/conf/*/rp_filter; do
echo 1 > $f
done
Is this the first time that larchin has worked? Because I haven’t been able to do a successful install on my IBM Thinkpad T42. Using the previous release (5.24.09?), I had made it to nearly the end of the install, and it failed. I don’t remember when, but I think it was at the grub install point. If it’s working now, I’ll give it another go.
@eyeofliberty
It should work as long as your on the lxde desktop when using the installer. This is cause a error will happen on xfce due to gvfs being installed. This will be fixed in the next release. But the installer works just fine on the lxde desktop.
Thanks! Yup, tried it from LXDE live session, and it worked just fine.
This is how I did it:
-It booted up using XFCE as the desktop environment.
-I went to /arch/archiso-setup and followed all the steps.
I chose ext4 as the filesystem.
-I had problems only once with GRUB bootloader because I selected the wrong option. In order to fix the problem I chose the first option which was /dev/sda ((or /dev/hda)) .
-Right now, XFCE is running great. My computer is a Dell Inspiron 600m and Arch is only using 124 Mb of RAM with no apps running.
Does this help?
-2501
“But the installer works just fine on the lxde desktop”
Would like to install on hard disk but how do you reach that lxde desktop. I always get xfce.
Thank you.
When the Live CD is booting, use the “baseonly” option (second one down).
Thank you for info on the the “baseonly” option!
Wish to confirm that ‘larchin’ seems to work now.
It appears the archiso LiveCD cannot be installed on an external usb hard disk since the partitions of that hard disk are not recognised at boot time.
Now I know why I did not see the the lxde desktop. Well, I like XFCE a lot….maybe next time.
-2501
Is there anyway to install programs from your desktop using something similar to installpkg (Slackware/Zenwalk) or dpkg -i (Ubuntu/debian) ?
You might want to go to the Arch website, and learn about using Pacman. Very powerful, and very easy.
I went and I did some reading but I haven’t found anything yet….well…I guess it is something new.
Thanks…
ps: see my new Arch Linux desktop! XFCE + Arch
http://my.opera.com/gs2501/blog/
-2501
Wicd seems to be a big mess. Do not upgrade it to the new version. I did a pacman -Syu –ignore wicd to keep it up-to-date and it went fine.
-2501
Just in case:
pacman -Syu –ignore wicd
I turned on my laptop and Arch is only using 85Mb of RAM !!!! I am keeping Arch Linux.
-2501
Nice. My Debian with Gnome/Openbox is using 115MB on my Thinkpad.
I was getting about the same ((115-123 Mb)) with Zenwalk.
-2501
Wish to confirm that ‘larchin’ works. Installed archiso on hard disk from “baseonly” = LXDE. But would like to have XFCE. Any way to reach that goal ie to change from lxde to xfce?
Again: thank you for providing archiso. Really nice and fast …
Just boot up Arch from disc and XFCE will appear by default. Then go to /arch/archiso-setup and follow the instructions. I did it again last night and it worked perfect.
Just do not update wicd to the new version because for some reason is not working properly. Go to etc/pacman.conf and add
IgnorePkg = wicd
That should do it. No problems so far.
I love Arch!
-2501
Thank you for advice.
The problem is that I have now a running lxde system. Wondering if I have to reinstall using archiso-setup. My installation with ‘larchin’ was very nice … Would like to add xfce and have it as default.
Can’t you just install XFCE using pacman from the terminal, or the Shaman GUI app? Why the heck would you need to do a fresh install?
I would do a fresh install. I don’t really like lxde…maybe because I got used to XFCE that has a UNIX feel.
Look at mine at my.opera.com/gs2501
-2501
I would do a fresh install because only I want is XFCE and nothing else. I would want to keep any of those files in my computer if they are not needed.
-2501
@eyeofliberty
If you need to do a fresh install you can just press F1 on slim login screen to change the desktop to lxde for the installer to work. The other way is to install xfce then just copy /etc/X11/xinit/xinitrc.xfce over /etc/X11/xinit/xinitrc file. This will make xfce the default desktop.
Would that get rid off lxde files completely?????? My previous experience with other distros has not been a sucess.
-2501
ThinkPad R51 with 82852/855 video won’t run X Window properly again. Actually appears to run X, but only displays random patterns on screen. Entering password starts window mngr but display still no good. Last version I tried (13 May) was OK with this machine.
@gnomic
I think i know why. The intel video driver was update on may 15 to 2.7.1. You could try fail safe option since xorg.conf is not made using that menu option. This will give vesa instead of intel but it may at least be workable.
So, I didn’t have the option to change the time zone during the install, my clock is several hours ahead. How do I change that? Thanks!
@eyeofliberty
You can change time with date in shell. Link here.
Great job!!
LXDE+Arch Rocks!!!!
It’s far the most fast OS I’ve even probe
Repeat : ‘arch/archiso-setup’ doesn’t work for me whereas ‘larchin’ works fine but gives lxde.
How to take care of nvidia under archiso? My card is 8600M GT.
Thank you.
Glad to hear Arch is working for you! So far, my experience has been very positive. I am running Arch on my laptop and Zenwalk on the other one. Both perfect for research…
-2501
Got this one installed, base only, and it works just fine. The only problem is trying to get the time set right. I am in NYC and for some reason it keeps thinking I am either in Seattle, Washington or London. I can get it 4 hours ahead or 3 hours behind – cannot get it to adjust to the correct time using ntpd or local. PITA!!
I have gotten all my other distros except 1 to work just fine when I added them to the GRUB. Will have to figure out why that other one is not working.
Also need to get cups to work so I can install my printer. I was getting a server error when I did the localhost:631. Don’t know if cups was down at the time or if I have the setup wrong to get the printer to work.
No other problems that I have found yet. Have not tried to watch a DVD but you tube works great. All in all the problems are more irritating that deal-breakers. Good job on this one and ARCH is working beautifully.
@rhomp2002
I found a gui for change time for archlinux. You willl have to type amp-calendar in shell to get it. This will help you setup date and time. I will make a menu icon in the next release for it. Amp-calendar is already in the 20090605 iso. Just for got about it.
Thanks for the heads-up on amp-calendar, but it doesn’t set the time for me. I change it, click ‘Apply’ and then ‘OK’, but the time doesn’t change. Also, I have installed kdemod (3), but can’t get it to boot into KDE. I tried changing ‘startlxde’ in .xinitrc to ‘startkde’ and ‘startkde3’ but that didn’t work.
Oh, well, I think I’m just going to do a proper Arch install this morning. No offense, your Arch live CD is great, but in the end, it’s just cheating the real ‘Arch Way’. Your live CD has actually been a great learning tool for getting my hands dirty in Arch. I think I’m ready for the full-meal deal!
Amp-calendar: Had to do it from root. Now time is set correctly.
1. Time is tricky sometimes but it should work. In my case, I just choose Central Time/Chicago and it works. Did you try to set it up manually?
2.Do you have an HP printer? Make sure you have hpijs installed. You can also check on you startup applications. CUPS should be there.
3. For the DVDs, just install libdvdcss .
-2501
How do I get the amp-calendar to hold the time. I got it set and it works from there just great. However, when I reboot I have to run amp-calendar again. Would like to set it once and forget it.
Did you set the time from the root account, or a user account? Mine didn’t take, also, until I set it from root.
I initially did it from su/password on the user login. I rebooted to root/root password and did it again and it came up working fine. Thanks for the heads-up.
Have a wonderful week.
@rhomp2002
I found something weird with the code. It looks like amp-calendar uses sudo /bin/date when setting it up. So in theory, it should work without login on to root since sudo works in archiso-live.
So I’m think you have to login to root to get work. You can’t just use sudo maybe.
If I understand well, ‘larchin’ only works with lxde. OK!
How to change from xfce to lxde since I would like to install xfce on an hard disk. When I boot into lxde I can only have an base ie lxde system. And I prefer a xfce sysem because I am used to it. /arch/archiso-setup does not work on my computer.