[Tails-dev] Idea

2023-11-20 Thread Thyago
Why don't you have any idea to use a virtual machine to install the
system and the bootloader?
___
Tails-dev mailing list
Tails-dev@boum.org
https://www.autistici.org/mailman/listinfo/tails-dev
To unsubscribe from this list, send an empty email to 
tails-dev-unsubscr...@boum.org.


Re: [Tails-dev] idea: stop HDD by default?

2015-01-08 Thread intrigeri
Hi,

flapflap wrote (07 Jan 2015 00:51:10 GMT) :
> bertagaz:
>> We're doing so since 0.8, see https://labs.riseup.net/code/issues/6076

> Hmm that is strange. On my laptop, the internal hard disk always spins
> and I never experienced it to stop doing so (plain booting from USB stick).

We've started discussing this on the "Please review & merge
bugfix/less-aggressive-hard-disk-APM-on-AC" thread, back in March 2013
(and possibly the thread starts earlier). The discussion was "a bit"
painful, so I never got around to finish the draft email that's been
waiting half-completed in local storage.

I'll take this heads up as an opportunity to get back to it, hopefully
in the next few days. Thanks!

Cheers,
-- 
intrigeri
___
Tails-dev mailing list
Tails-dev@boum.org
https://mailman.boum.org/listinfo/tails-dev
To unsubscribe from this list, send an empty email to 
tails-dev-unsubscr...@boum.org.


Re: [Tails-dev] idea: stop HDD by default?

2015-01-06 Thread flapflap
Hi,

bertagaz:
> On Tue, Jan 06, 2015 at 04:53:28PM +, flapflap wrote:
>> I was thinking whether it makes sense to by default spin-down the
>> harddisks, e.g. via hdparm -y /dev/sdX or hdparm -Y /dev/sdX


> We're doing so since 0.8, see https://labs.riseup.net/code/issues/6076

Hmm that is strange. On my laptop, the internal hard disk always spins
and I never experienced it to stop doing so (plain booting from USB stick).

~flapflap



signature.asc
Description: OpenPGP digital signature
___
Tails-dev mailing list
Tails-dev@boum.org
https://mailman.boum.org/listinfo/tails-dev
To unsubscribe from this list, send an empty email to 
tails-dev-unsubscr...@boum.org.

Re: [Tails-dev] idea: stop HDD by default?

2015-01-06 Thread bertagaz
Hi,

On Tue, Jan 06, 2015 at 04:53:28PM +, flapflap wrote:
> I was thinking whether it makes sense to by default spin-down the
> harddisks, e.g. via hdparm -y /dev/sdX or hdparm -Y /dev/sdX
> 
> That would have the advantage of reduced power consumption, less noise
> (up to complete silence when the fan is not spinning), and proof to the
> user that Tails is not accessing the HDD.  Of course, the HDD need to
> spin-up again if the user mounts it.
> 
> but what I cannot comment on is whether there may also be difficulties
> from spinning-down the HDD (hardware failure? ...)

We're doing so since 0.8, see https://labs.riseup.net/code/issues/6076

cheers,

bert.
___
Tails-dev mailing list
Tails-dev@boum.org
https://mailman.boum.org/listinfo/tails-dev
To unsubscribe from this list, send an empty email to 
tails-dev-unsubscr...@boum.org.


[Tails-dev] idea: stop HDD by default?

2015-01-06 Thread flapflap
Hi all,

I was thinking whether it makes sense to by default spin-down the
harddisks, e.g. via hdparm -y /dev/sdX or hdparm -Y /dev/sdX

That would have the advantage of reduced power consumption, less noise
(up to complete silence when the fan is not spinning), and proof to the
user that Tails is not accessing the HDD.  Of course, the HDD need to
spin-up again if the user mounts it.

but what I cannot comment on is whether there may also be difficulties
from spinning-down the HDD (hardware failure? ...)

~flapflap



signature.asc
Description: OpenPGP digital signature
___
Tails-dev mailing list
Tails-dev@boum.org
https://mailman.boum.org/listinfo/tails-dev
To unsubscribe from this list, send an empty email to 
tails-dev-unsubscr...@boum.org.

Re: [Tails-dev] Idea: document creating Tails USB thumb drive via VirtualBox

2013-01-09 Thread intrigeri
Hi,

Lukasz Dobrogowski wrote (08 Jan 2013 22:53:54 GMT) :
> However, this seems not true. If I understand
> https://www.virtualbox.org/manual/ch03.html#idp11494896 correctly,
> USB 1.0/1.1 (OHCI/UHCI) passthrough is implemented as free software

Great news!

> USB 1.1 is IMHO good enough for installing Tails on a pendrive,

Sure, agreed.

> so... who's up to writing a tutorial on this? ;-)

How about starting by trying to clone Tails onto a USB stick using
this USB 1.1 support, and in the process, quickly writing down every
step that's needed (including copy'n'pasting the exact error messages,
GUI elements phrasing)? This surely would make it a lot easier for
anyone who will want to write the tutorial :)

Cheers,
-- 
  intrigeri
  | GnuPG key @ https://gaffer.ptitcanardnoir.org/intrigeri/intrigeri.asc
  | OTR fingerprint @ https://gaffer.ptitcanardnoir.org/intrigeri/otr.asc
___
tails-dev mailing list
tails-dev@boum.org
https://mailman.boum.org/listinfo/tails-dev


[Tails-dev] Idea: document creating Tails USB thumb drive via VirtualBox

2013-01-08 Thread Lukasz Dobrogowski
Hello,

Today on #tails we had an interesting revelation; i.e. creating Tails
USB stick is quite often done via a VM with USB passthrough, such as
VirtualBox. So it could be nice to document this method on
https://tails.boum.org/doc/first_steps/usb_installation/

There was a concern from intrigeri:

[23:23:03]  This would be great IMHO, but one problem is that
there's no free software virtual machine with USB passthrough support
that we can easily document there. AFACT only qemu/kvm/libvirt support
this, and even with virt-manager, it's non-trivial to setup.

However, this seems not true. If I understand
https://www.virtualbox.org/manual/ch03.html#idp11494896 correctly, USB
1.0/1.1 (OHCI/UHCI) passthrough is implemented as free software and only
USB 2.0 (EHCI) support is part of the proprietary Oracle extension pack.
USB 1.1 is IMHO good enough for installing Tails on a pendrive, so...
who's up to writing a tutorial on this? ;-)

Cheers,
Ɓukasz Dobrogowski



signature.asc
Description: OpenPGP digital signature
___
tails-dev mailing list
tails-dev@boum.org
https://mailman.boum.org/listinfo/tails-dev


Re: [Tails-dev] Idea or something

2012-11-09 Thread Ague Mill
(CC'ing you. I don't know if you are subscribed.)

Hans-J. Ullrich:
> Although everything is sent over TOR, I think you should make sure, the MAC-
> address of every network device should be changed at boot. You ca do this by 
> macchanger.

See . Feel free to provide
patches.

> Wireless cards and network cards (wlan0 and eth0) should at least got a 
> changed MAC-address, but also should every new device get a new MAC (i think 
> of bluetooth or usb-3g-devices).

Feel free to tell us how to do the later.
 
> Has tails a firewall active? (iptables). If yes, it should be completely (and 
> mean COMPLETELY) closed, and should be opened by the user when he is needing 
> it.

This question shows that you have hardly done any research before
asking. Please look at Tails documentation
 and contribute section
.

-- 
Ague


pgph9GE9AIFyS.pgp
Description: PGP signature
___
tails-dev mailing list
tails-dev@boum.org
https://mailman.boum.org/listinfo/tails-dev


[Tails-dev] Idea or something

2012-11-09 Thread Hans-J. Ullrich
Hi dear tails-team,

first of all, I like your cd and think, it is the best way for anonymity. 
But there is something, I want to suggest to improve security.

Although everything is sent over TOR, I think you should make sure, the MAC-
address of every network device should be changed at boot. You ca do this by 
macchanger. 

Wireless cards and network cards (wlan0 and eth0) should at least got a 
changed MAC-address, but also should every new device get a new MAC (i think 
of bluetooth or usb-3g-devices).

None of physical information of the used computer should be known to the 
outside. I do not know, if it is possible, to temporaryly change MAC-addresses 
of used routers, but this option would be nice, too.

And of course (and I guess, this is already implemented) NONE, and really mean 
NONE services should get access to any parts of the used computer (no 
services!!!). 

Has tails a firewall active? (iptables). If yes, it should be completely (and 
mean COMPLETELY) closed, and should be opened by the user when he is needing 
it.

I imagine a nice GUI choosing a whitelist in an understanding way: Either open 
ports (for experienced users) or open by description (i.e. "sending mail" , 
"receiving mail" or similar).

Whjat do you think? I am looking forward to your answer.

Have a nice weekend

Hans-J. Ullrich 

___
tails-dev mailing list
tails-dev@boum.org
https://mailman.boum.org/listinfo/tails-dev