I don't think most immutable distros are designed to prevent users from mounting the root filesystem as read write. They're instead designed around delivering a core system that's guaranteed to work
> I don't think most immutable distros are designed to prevent users from mounting the root filesystem as read write.
Someone mentioned running Puppy Linux from a CD/DVD (write once).
I do wonder: it'd probably be possible for me to boot a Linux distro from a DVD and then launch Promox and my VMs/containers automatically. I take it I'd have to burn a new DVD every time a security patch affecting programs installed on the bare system comes out.
The "main" OS would be hard to compromise in a persistent way as you cannot remount a write-only DVD read-write.
Someone mentioned running Puppy Linux from a CD/DVD (write once).
I do wonder: it'd probably be possible for me to boot a Linux distro from a DVD and then launch Promox and my VMs/containers automatically. I take it I'd have to burn a new DVD every time a security patch affecting programs installed on the bare system comes out.
The "main" OS would be hard to compromise in a persistent way as you cannot remount a write-only DVD read-write.