The Device Security panel has been simplified in GNOME 44 Alpha and
Ubuntu 23.04 no longer disables showing the panel.
https://launchpad.net/ubuntu/+source/gnome-control-
center/1:44~alpha-0ubuntu1
--
You received this bug notification because you are a member of Desktop
Packages, which is
> A default Ubuntu install only gets us "Security Level 1". The highest
level is "Security Level 3".
It's not a function of the OS, it's a function of the underlying hardware,
firmware, and firmware configuration for your given system.
The "!" in the HSI string is controlled by OS behavior (such
FYI - 1.8.4 synced from Debian to Ubuntu kinetic now.
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to gnome-control-center in Ubuntu.
https://bugs.launchpad.net/bugs/1987162
Title:
43: New Device Security feature is confusing and
The fix has landed with version 1.8.4.
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to gnome-control-center in Ubuntu.
https://bugs.launchpad.net/bugs/1987162
Title:
43: New Device Security feature is confusing and unhelpful currently
I achieved level 3 with a fix that will be released for fwupd to
correctly detect the presence of Intel CET feature. That is my original
bug report: https://github.com/fwupd/fwupd/issues/4960
** Bug watch added: github.com/fwupd/fwupd/issues #4960
https://github.com/fwupd/fwupd/issues/4960
--
There are some features maybe I couldn't get, like encrypted RAM,
because they're related to corporate level features.
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to gnome-control-center in Ubuntu.
I achieved level 2 just setting "intel_iommu=on" on GRUB.
** Attachment added: "Screenshot from 2022-08-28 11-48-52.png"
https://bugs.launchpad.net/ubuntu/+source/gnome-control-center/+bug/1987162/+attachment/5612149/+files/Screenshot%20from%202022-08-28%2011-48-52.png
--
You received this
Also note that there is no requirement to have Secure Boot enabled in
Cyber Essentials.
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to gnome-control-center in Ubuntu.
https://bugs.launchpad.net/bugs/1987162
Title:
43: New Device
@billdietrich444
Note: my comment is a trolling attempt, and hopefully an obvious one due
to the choice of an obviously unimplementable-in-a-useful-way standard.
Please take only 10% seriously.
It may be a good idea to stop talking about pure security according to
our own set of criteria
At least in Ubuntu 22.10, you can also get the same information by
opening a terminal and running this command.
fwupdmgr security
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to gnome-control-center in Ubuntu.
I think the whole concept of numeric security "levels" is wrong.
Instead there should be a list of threats:
- physical (address by using LUKS, disabling USB ports, locking screen
after N minutes inactivity, etc)
- bad apps (address by enabling AppArmor or SELinux etc, using Snaps or
Flatpaks,
>> I don't think it's appropriate to display that in the settings app.
> I suppose that not knowing is more secure?
Yes if you consider the risk of users DoS'ing themselves by having to
potentially hack around in the CLI / BIOS settings to try and find the
right incantations to get a green check
This bug was fixed in the package gnome-control-center -
1:43~beta-1ubuntu2
---
gnome-control-center (1:43~beta-1ubuntu2) kinetic; urgency=medium
* Add patch to disable the new Device Security panel (LP: #1987162)
-- Jeremy Bicha Mon, 22 Aug 2022 10:09:25 -0400
** Changed in:
> If regular users can't easily fix the issues listed in there
You can fix some, but they do currently require the user to open up the
system firmware settings. You need the latest (git master) version of
fwupd installed to get the [translated] long descriptions of each
hardware security problem.
** Changed in: gnome-control-center (Ubuntu)
Status: Triaged => Fix Committed
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to gnome-control-center in Ubuntu.
https://bugs.launchpad.net/bugs/1987162
Title:
43: New Device
Another issue to consider here is that there is no secure way to display
the information in the first place. If some of those settings are
disabled, malware can simply modify the app to display a green checkbox
next to Level 3, leading to a false sense of security.
--
You received this bug
The feature was also discussed at
https://blogs.gnome.org/hughsie/2022/07/29/emulated-host-profiles-in-
fwupd/
Yes, we can go ahead and hide this feature now for Ubuntu 22.10. I
wanted to have a few other people see the current state of the feature
before we disabled it. Perhaps it will be more
Sharing some references, the panel was added as part of
https://gitlab.gnome.org/GNOME/gnome-control-center/-/issues/1570
the intend from the design seems that the items description include a
suggestion of how problems could be resolved.
there are some report about improving the UI as
Indeed - I don't think it is useful to have such information displayed
prominently when there is nothing that user's can do to affect this (in
general) and so this will only cause alarm. Like Marc said, it is then
not useful to display this without offering actionable tasks that a user
an perform
** Description changed:
GNOME 43 added a new Device Security feature in the Settings app.
- You can access it in gnome-control-center 43~beta-1ubuntu1 by
+ You can access it in gnome-control-center 1:43~beta-1ubuntu1
1. Open the Settings app
2. Click Privacy then Device Security
The
I don't understand not only why those advanced features would be exposed
in a GUI, but why ordinary users would care at all about most of those
settings.
If we're going to expose "security information" to users, we should
probably start by showing basic stuff, like if they are properly getting
** Attachment added: "Screenshot from 2022-08-20 08-08-59.png"
https://bugs.launchpad.net/ubuntu/+source/gnome-control-center/+bug/1987162/+attachment/5610188/+files/Screenshot%20from%202022-08-20%2008-08-59.png
** Attachment removed: "Screenshot from 2022-08-17 12-33-19.png"
** Attachment added: "Screenshot from 2022-08-20 08-08-40.png"
https://bugs.launchpad.net/ubuntu/+source/gnome-control-center/+bug/1987162/+attachment/5610185/+files/Screenshot%20from%202022-08-20%2008-08-40.png
--
You received this bug notification because you are a member of Desktop
** Attachment added: "Screenshot from 2022-08-20 08-08-55.png"
https://bugs.launchpad.net/ubuntu/+source/gnome-control-center/+bug/1987162/+attachment/5610187/+files/Screenshot%20from%202022-08-20%2008-08-55.png
--
You received this bug notification because you are a member of Desktop
** Attachment added: "Screenshot from 2022-08-20 08-08-47.png"
https://bugs.launchpad.net/ubuntu/+source/gnome-control-center/+bug/1987162/+attachment/5610186/+files/Screenshot%20from%202022-08-20%2008-08-47.png
--
You received this bug notification because you are a member of Desktop
** Attachment added: "Screenshot from 2022-08-20 08-08-28.png"
https://bugs.launchpad.net/ubuntu/+source/gnome-control-center/+bug/1987162/+attachment/5610184/+files/Screenshot%20from%202022-08-20%2008-08-28.png
--
You received this bug notification because you are a member of Desktop
** Attachment added: "Screenshot from 2022-08-20 08-08-18.png"
https://bugs.launchpad.net/ubuntu/+source/gnome-control-center/+bug/1987162/+attachment/5610183/+files/Screenshot%20from%202022-08-20%2008-08-18.png
--
You received this bug notification because you are a member of Desktop
** Attachment added: "Screenshot from 2022-08-17 12-33-19.png"
https://bugs.launchpad.net/ubuntu/+source/gnome-control-center/+bug/1987162/+attachment/5610182/+files/Screenshot%20from%202022-08-17%2012-33-19.png
** Tags added: kinetic
--
You received this bug notification because you are a
28 matches
Mail list logo