[qubes-users] How would an adversary hack into your appVMs?
I'm curious if and how someone could hack into your appVMs if there is a firewall VM in the way. How would they detect that there is a VM on your PC that is accessing the network connection provided by that VM? Would it just appear to them that all the network traffic is coming from sys-firewall? Suppose, for example, someone is using seriously out of date packages and the entire firewall VM becomes a nest for hackers to get busy, would they then easily be able to hack your appVMs and thus easily have access to your files? -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/be26cce3-640b-48fe-a37f-3094e0ce9014%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[qubes-users] Do you need to harden sys-firewall in any way?
There seems to not be much information on this. Are there any steps you can or should take to harden your firewall vm? There are services in the qube settings called: qubes-firewall, qubes-network, qubes-update-check, qubes-updates-proxy. Neither of them are used in sys-net or sys-firewall. Should they be? -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/2e295408-7380-4ba2-b7aa-f75f0b8c1a56%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[qubes-users] Where can I find the documentation for qube services?
Services include for example: clocksync, cups, qubes-firewall. I would in particular like to know what meminfo-writer does as https://qubes-os.org/doc/disposablevm-customization/ tells you to disable the service on any new sys-net VM that you create. This is confusing because the service appears to be switched off in the default sys-net VM anyways. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/a195d8fe-e61e-45a0-8c6b-453373a7117a%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [qubes-users] Backup Error: Warning: unrecognized data found in configuration files
On Monday, 6 May 2019 17:14:46 UTC+1, daniel wrote: > On Sun, 5 May 2019 20:24:07 + > "'awokd' via qubes-users" wrote: > > > Eccentric Butterfly: > > > When I go to backup my Qubes, the backup screen shows a red error > > > at the bottom of the window saying "Warning: unrecognized data > > > found in configuration files". > > I ran into this and it was innocuous. Probably you have deleted a qube > that you backed up the last time you ran backup. The system remembers > the choices you made in the last backup and sets them up as the > defaults. So it knows it is supposed to backup a qube that isn't there > anymore. So it says it's confused. You can follow awokd's advice > (the file will be recreated when you run backup; it is where the > previous-backup settings are stored). Or you can just ignore the > message and continue with your backup. I'd delete the file, just in > case something more serious is happening. > > Best Wishes, > Daniel > > > /etc/qubes/backup/qubes-manager-backup.conf" in dom0 terminal. This > > will delete the configuration you saved last time you ran backup. > > > > > Why is this? Is there anything I need to do? Will this have any > > > effect on my ability to backup and restore? > > Haven't seen it before so don't know if it would prevent backups or > > restores. > > Thanks for your reply guys. I think it's a mix of what both of you are saying. When I backup qubes to a hard drive, I make sure the qube is not connected to a network. When I'm done, I usually delete the qube. Though in this case, it wasn't deleted (or I re-made the qube with the same name). but it also wasn't running. When I saw the contents of that file, I realised the path in the 'BACKUP' qube was no longer valid as 1) the qube was not running and 2) the hard drive would not be mounted. Thus, I ran the qube and mounted it and the error was gone. Thanks for your help, it was much appreciated! Butterfly. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/f1d22ab5-6296-47fb-8e7c-eb5fe6ed4243%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [qubes-users] Backup Error: Warning: unrecognized data found in configuration files
On Monday, 6 May 2019 22:35:55 UTC+1, Eccentric Butterfly wrote: > On Monday, 6 May 2019 17:14:46 UTC+1, daniel wrote: > > On Sun, 5 May 2019 20:24:07 + > > "'awokd' via qubes-users" wrote: > > > > > Eccentric Butterfly: > > > > When I go to backup my Qubes, the backup screen shows a red error > > > > at the bottom of the window saying "Warning: unrecognized data > > > > found in configuration files". > > > > I ran into this and it was innocuous. Probably you have deleted a qube > > that you backed up the last time you ran backup. The system remembers > > the choices you made in the last backup and sets them up as the > > defaults. So it knows it is supposed to backup a qube that isn't there > > anymore. So it says it's confused. You can follow awokd's advice > > (the file will be recreated when you run backup; it is where the > > previous-backup settings are stored). Or you can just ignore the > > message and continue with your backup. I'd delete the file, just in > > case something more serious is happening. > > > > Best Wishes, > > Daniel > > > > > /etc/qubes/backup/qubes-manager-backup.conf" in dom0 terminal. This > > > will delete the configuration you saved last time you ran backup. > > > > > > > Why is this? Is there anything I need to do? Will this have any > > > > effect on my ability to backup and restore? > > > Haven't seen it before so don't know if it would prevent backups or > > > restores. > > > > > > Thanks for your reply guys. I think it's a mix of what both of you are saying. > > When I backup qubes to a hard drive, I make sure the qube is not connected to > a network. When I'm done, I usually delete the qube. Though in this case, it > wasn't deleted (or I re-made the qube with the same name). but it also wasn't > running. > > When I saw the contents of that file, I realised the path in the 'BACKUP' > qube was no longer valid as 1) the qube was not running and 2) the hard drive > would not be mounted. Thus, I ran the qube and mounted it and the error was > gone. > > Thanks for your help, it was much appreciated! > Butterfly. Speaking of which, is there really any security benefit in making sure the backup is not connected to a network? Provided the encryption password is secure. I don't think this was mentioned in the docs anywhere as something to consider so it's probably a bit excessive on my part. Of course, provided the password is long and secure. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/22534478-c0e4-4428-adcf-35baa15aa4ce%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[qubes-users] Backup Error: Warning: unrecognized data found in configuration files
When I go to backup my Qubes, the backup screen shows a red error at the bottom of the window saying "Warning: unrecognized data found in configuration files". Why is this? Is there anything I need to do? Will this have any effect on my ability to backup and restore? -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/aabae889-1b34-494d-b6fb-777c3ca5ec7d%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[qubes-users] Backup Error: Warning: unrecognized data found in configuration files
When I go to backup Qubes, the backup screen shows a red error at the bottom of the window saying "Warning: unrecognized data found in configuration files" -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/5f7742b1-5a8a-49e7-8f30-b1c3dfdae324%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
