Re: [tor-talk] Pirate Linux 2.0 alpha
Hi, AK wrote (01 Apr 2014 01:53:06 GMT) : > Let me just clarify some points. > Is the goal to be more secure than a standard Linux distro such as Ubuntu > or Debian? Yes. OK. What I'd be delighted to read now is what "more secure" means. I'll wait for your next write-up :) Cheers, -- intrigeri | GnuPG key @ https://gaffer.ptitcanardnoir.org/intrigeri/intrigeri.asc | OTR fingerprint @ https://gaffer.ptitcanardnoir.org/intrigeri/otr.asc -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Pirate Linux 2.0 alpha
OK, I will try to write something up as soon as I can. Let me just clarify some points. Is the goal to be more secure than a standard Linux distro such as Ubuntu or Debian? Yes. Is the goal to be more secure than a distro such as Tails or Liberte? No. For example, instead of using a patched version of Firefox as Tails does, Pirate Linux uses the latest official Firefox ESR together with the JondoFox profile to create "the Tor Browser". So there is less micromanaging of security issues that should in principle be dealt with by the upstream providers (Mozilla in this case). The goals can change, but note that for now I cannot guarantee any level of security, as this would require more testing and probably hiring professional security auditors. For now I want to make sure all the features are working as expected, and then eventually, when I am happy with the functionality, and I have enough resources, I would like to perform a full audit of the software. Also, more people working on this would speed things up (I work full time on other things), so I am currently trying to find some people who would like to help. On Sun, Mar 30, 2014 at 8:08 PM, krishna e bera wrote: > On Sun, Mar 30, 2014 at 4:44 PM, AK wrote: > > > Hi > > > > I was expecting you to ask something like that :). Well for now it just > an > > alpha version, so I would not count on it for robust security. In fact, > > security is not the main focus of this project (unlike Tails and > Liberte). > > Of course, it should still be reasonably secure, but I am focusing more > on > > ease of use and privacy, rather than bulletproof security. If there is > > enough interest, I will make a formal document outlining the model, > since I > > have been asked this before. > > > > Cheers > > > > > interest++ > -- > tor-talk mailing list - tor-talk@lists.torproject.org > To unsubscribe or change other settings go to > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk > -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Pirate Linux 2.0 alpha
On Sun, Mar 30, 2014 at 4:44 PM, AK wrote: > Hi > > I was expecting you to ask something like that :). Well for now it just an > alpha version, so I would not count on it for robust security. In fact, > security is not the main focus of this project (unlike Tails and Liberte). > Of course, it should still be reasonably secure, but I am focusing more on > ease of use and privacy, rather than bulletproof security. If there is > enough interest, I will make a formal document outlining the model, since I > have been asked this before. > > Cheers > interest++ -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Pirate Linux 2.0 alpha
Hi I was expecting you to ask something like that :). Well for now it just an alpha version, so I would not count on it for robust security. In fact, security is not the main focus of this project (unlike Tails and Liberte). Of course, it should still be reasonably secure, but I am focusing more on ease of use and privacy, rather than bulletproof security. If there is enough interest, I will make a formal document outlining the model, since I have been asked this before. Cheers On Sun, Mar 30, 2014 at 2:33 PM, intrigeri wrote: > Hi, > > AK wrote (30 Mar 2014 20:14:06 GMT) : > > More details are here: https://piratelinux.org/?p=567. > > Interesting, thanks! > > Where can I read about the threat model this system is meant to address? > > Cheers, > -- > intrigeri > | GnuPG key @ https://gaffer.ptitcanardnoir.org/intrigeri/intrigeri.asc > | OTR fingerprint @ https://gaffer.ptitcanardnoir.org/intrigeri/otr.asc > -- > tor-talk mailing list - tor-talk@lists.torproject.org > To unsubscribe or change other settings go to > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk > -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Pirate Linux 2.0 alpha
Hi, AK wrote (30 Mar 2014 20:14:06 GMT) : > More details are here: https://piratelinux.org/?p=567. Interesting, thanks! Where can I read about the threat model this system is meant to address? Cheers, -- intrigeri | GnuPG key @ https://gaffer.ptitcanardnoir.org/intrigeri/intrigeri.asc | OTR fingerprint @ https://gaffer.ptitcanardnoir.org/intrigeri/otr.asc -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
