fsprotect is a set of scripts, customized for debian systems that protect existing filesystems. It uses the AUFS filesystem and some initramfs magic to protect the root filesystem. It also uses a simple init script to protect other filesystems as early as possible. fsprotect is excellent for public computers like those in libraries, labs, etc. It will ease the life of all administrators with a couple of simple steps.

The benefits of using fsprotect are:

• Filesystems are protected and no change is ever written to the disk
• Protected filesystems are mounted read-only. This means that they arent damaged when the computer is turned off improperly.
• It is very easy to use. Just add an "fsprotect" parameter to the kernel for the root filesystem and list the filesystems to be protected in /etc/default/fsprotect.
• In some cases it makes the filesystem access faster.

The drawbacks of using fsprotect:

• Filesystem changes cannot be more than a predefined limit (set by you) (in bytes).
• Since tmpfs is heavily used, you need to have adequate swap space.

See also the protectmyfs (http://cli-apps.org/content/show.php/Protectmyfs?content=125943 )