I was looking at the Qubes source recently and was mildly surprised to see that
much of the Qubes-specific code is written in Python. As much as that helps
with productivity, I would have thought that the security risks outweigh the
benefits. Doesn’t the runtime engine alone present an attacke
I was looking at the Qubes source recently and was mildly surprised to see that
much of the Qubes-specific code is written in Python. As much as that helps
with productivity, I would have thought that the security risks outweigh the
benefits. Doesn’t the runtime engine alone present an attacke
I have reported you.
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to qubes-users+unsubscr...@googlegroups.com.
To post to this group, send email to qubes-users@
There is a ton of information about Hyperthreading, use cases that benefit from
it, use cases that don’t, Security issues, benchmarks, and more just a web
search away.
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubscribe from this gr
Thank you for the informative reply. I have since learned that gaming on one PC
while streaming from another is a thing. There are even PC cases made to house
two separate motherboards, power supplies, etc for this purpose. I still don’t
understand why anyone would want to do this, gamers have
On Thursday, April 11, 2019 at 11:44:48 AM UTC-7, John Mitchell wrote:
> On Thursday, April 11, 2019 at 7:31:49 PM UTC+2, jrsm...@gmail.com wrote:
> > So do I. I just boot Windows for that though. I’m a very curious sort and
> > genuinely don’t understand if you’re playing AAA games at high rez an
On Wednesday, April 10, 2019 at 3:25:34 AM UTC-7, unman wrote:
> On Tue, Apr 09, 2019 at 11:45:02AM -0700, jrsmi...@gmail.com wrote:
> > If there is no signal on PS/2 ground or I can eliminate it, is this the
> > more secure route or is it worth doing the USB shuffle? I have 4 USB
> > controller
On Thursday, April 11, 2019 at 10:12:55 AM UTC-7, 22...@tutamail.com wrote:
> If I am using Whonix-gw and Whonix-ws on Qubes is there in a sense a Tor kill
> switch in place by default? i.e. would Whonix-ws, if always connected to
> whonix-gw, ONLY transmit data thru Tor? or if the Tor circuit br
So do I. I just boot Windows for that though. I’m a very curious sort and
genuinely don’t understand if you’re playing AAA games at high rez and frame
rates. You’ll never get the performance for this use case out of a virtualized
environment that you get with native Windows.
--
You received t
On Wednesday, April 10, 2019 at 1:35:38 PM UTC-7, neovalis wrote:
> Low latency game streaming is fantastic and doesn't need a GPU on the
> client to work well. Moonlight Stream https://moonlight-stream.org/ is
> a great open source project that allows near zero latency game streaming
> over lan a
This is great input. This box will be in my home office on my home network
(Xfinity), and I have no reason to think that anyone would be interested enough
in what I’m doing to invest the resources necessary to enter my home when no
one is there and plant surveillance. This is more about underst
To be concrete and transparent, the mobo with PS/2 is a Gigabyte X299 Designare
ex with four USB controllers and a header for a hardware TPM, which I’ve
populated. The other mobo is an ASUS X299 Prime Deluxe II with no PS/2, five
USB controllers and only supports a firmware TPM. Both are fantast
The PS/2 keyboard leaking to ground risk seems like it would only apply if an
attacker had physical access. Is that right or is there a way it could be
exploited remotely?
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubscribe from this
Yet another approach might be to use a USB to PS/2 adapter to connect a USB
keyboard that supports PS/2 signaling to a native PS/2 port. Would that be a
good solution to avoid keyboard leaking signals to ground?
--
You received this message because you are subscribed to the Google Groups
"qub
If there is no signal on PS/2 ground or I can eliminate it, is this the more
secure route or is it worth doing the USB shuffle? I have 4 USB controllers
available.
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubscribe from this group
I really appreciate the responses. I bought a new mobo that does have native
PS/2 to use with Qubes. It arrived today and I’ll be trying it out after work
today. How would I go about determining if my keystrokes are being revealed on
ground? I have a storage scope so I think it would just be a
Right after I posted, I ran across this, which directly answers your question
and offers a solution that doesn’t require exposing dom0 to a USB controller
except during LUKS password entry at boot time.
https://www.qubes-os.org/doc/usb-qubes/#enable-a-usb-keyboard-for-login
--
You received th
And then there’s this:
https://www.qubes-os.org/doc/usb-qubes/#enable-a-usb-keyboard-for-login.
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to qubes-users+unsub
I’ve done a fair amount of digging into USB with Qubes recently and the most
comprehensive information I found was here:
https://www.qubes-os.org/doc/usb-devices/. Also check out Joanna’s article on
USB security issues that helped connect some dots for me:
http://theinvisiblethings.blogspot.com
I just read Joanna’s 2011 article describing the challenges of USB security and
I think this answers my question. Connecting the PS/2 keyboard and mouse to a
USB device via an adapter still leaves the issue of securing the USB
controller, so it offers little or nothing in the way of increased s
On Saturday, April 6, 2019 at 6:51:59 PM UTC-7, jrsm...@gmail.com wrote:
> I have a motherboard that I would like to use with Qubes that has no PS/2
> ports. I have a PS/2 keyboard and mouse and would like to know if connecting
> them via a PS/2 to USB adapter is as secure (or nearly so) as conn
I have a motherboard that I would like to use with Qubes that has no PS/2
ports. I have a PS/2 keyboard and mouse and would like to know if connecting
them via a PS/2 to USB adapter is as secure (or nearly so) as connecting via
native PS/2.
There are excellent docs describing how to use a USB
On Saturday, April 6, 2019 at 2:38:53 PM UTC-7, jrsm...@gmail.com wrote:
> Or is a PS2 to USB adapter with native PS2 keyboard and mouse just as secure?
It looks as though adding native PS/2 ports to a motherboard that doesn't
already have them is a non-starter.
I also read through several docs
Or is a PS2 to USB adapter with native PS2 keyboard and mouse just as secure?
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to qubes-users+unsubscr...@googlegroups
I've got a motherboard that does not have PS2 ports that I would like to use
for Qubes with a PS2 keyboard and mouse. I've seen several add-on cards that
look like they might provide the ports without going through USB, but they're
slim on specifics. Is anyone using one that they can recommend
Looking for guidance on best practices for Qubes configuration: given the
vulnerabilities that have been reported with Hyperthreading, it would seem to
be a no-brainer that it should be disabled, but I don’t see anyone coming right
out and saying so. Curious what this group thinks.
--
You r
So I can safely delete the Debian-9 template?
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to qubes-users+unsubscr...@googlegroups.com.
To post to this group, sen
On Saturday, March 30, 2019 at 12:27:47 PM UTC-7, Chris Laprise wrote:
> On 3/30/19 2:43 PM, seshu wrote:
>
> > In terms of open source hardware has any tried RISD V (https://riscv.org/
> > )? or have thoughts on its potential? They are not selling hardware, albiet
> > it's pretty expensive, thr
On Sunday, March 31, 2019 at 8:12:01 AM UTC-7, awokd wrote:
> jrsmi...@gmail.com wrote on 3/31/19 3:04 PM:
> > I'm finally going to just ask. I've been searching for something to help
> > me understand this for months now. Debian-9 template is somehow connected
> > to the Whonix templates, but
On Monday, March 25, 2019 at 7:44:31 PM UTC-7, Andrew David Wong wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA512
>
> On 24/03/2019 7.30 PM, Andrew David Wong wrote:
> > Dear Qubes Community,
> >
> > We regret to announce that the Qubes Tor onion services will no longer
> > be maintaine
I'm finally going to just ask. I've been searching for something to help me
understand this for months now. Debian-9 template is somehow connected to the
Whonix templates, but not by the usual templateVM / appVM mechanism. Can
someone please enlighten me or point me to the docs I've not found
https://github.com/system76/coreboot
Clearly they think they can handle modern hardware. Makes me wonder why the
coreboot folks have thrown up Thierry hands and declared defeat.
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubscribe fr
>From a recent System76 announcement:
“In firmware news, our engineer Jeremy has made a lot of progress in porting
Coreboot to the Darter Pro and multiple versions of Galago Pro. It can now run
both BIOS and UEFI implementations. However, certain bugs need to be worked out
before we can officia
What does this say about the direction Joanna and Golem are taking? Everyone
build clouds on Intel hardware. No getting around that.
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from
This is seriously bad news. If you and Whonix are that resource strapped, it
does not bode well for the future of either team. I have done my part and
contributed what I could to both.
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubs
That was one of the first places I looked. Maybe I’m just a hardhead, but I
found it difficult to believe that there really was no support for coreboot in
any form for modern hardware.
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubs
Spent several hours yesterday trying to track down what I would need to do to
install coreboot on all of my computers, starting with my Qubes box: a Levnovo
Thinkpad T480.
The bottom line from what I can tell is that if you have an Intel CPU made
since 2008 (any that have Boot Guard) or an AMD
I knew that I get more cores per $ with AMD but hadn’t heard that IO would be
better too. Can you paste a link?
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to
“The install appeared successful. I was able to add
Chromium to an appVM. When I started the appVM and launched Chromium
from the menu... nothing! No window, no error message. I tried a number
of times (the reason for just re-trying will be mentioned below). ”
This stood out for me and was not
There's nothing even close to these on the HCL, but would like to know if
anyone has attempted either of these with 4.0.1 and succeeded. These are
essentially the same base hardware as given in the BoM for the recently
announced System76 Thelio Major open source hardware desktop systems.
--
Reading through the post questioning the trustworthiness of Whonix, I can't
tell whether we can continue trusting/using Whonix or not. Can someone
(preferably in a position to speak for QubesOS), please state, in a
straightforward and unambiguous manner, spell this out for us?
--
You received
I'm new to Qubes, so I will preface this by saying that there may be something
I'm missing. What struck me was how many systems lacked a specification for
SLAT and TPM. If you want people to take you seriously, you need to know these
things.
--
You received this message because you are subsc
42 matches
Mail list logo
