On 11/23/2016 08:36 PM, HW42 wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Chris Laprise:
On 11/23/2016 08:13 PM, HW42 wrote:
Chris Laprise:
On 11/23/2016 07:17 PM, Marek Marczykowski-Górecki wrote:
On Wed, Nov 23, 2016 at 06:29:40PM -0500, Jean-Philippe Ouellet wrote:
On Wed, Nov 23, 2016 at 5:53 PM, Marek Marczykowski-Górecki
<[email protected]> wrote:
I would like feedback on:
1) Is dom0->other copying (not the other direction) something we even want?
Yes. Of course with explicit user consent.
I believe a keyboard shortcut triggered in dom0 is a trustworthy
indication of this. No?
Yes, it is. Just stressing it out.
This does sound a bit risky to me. If this existed and I had the
option, I'd turn it off.
Could you clarify why you think it's risky?
Because a user doing config/maintenance in dom0 CLI may well be
switching back and forth to domUs (searching for howtos, etc) at the
same time they are using the dom0 clipboard to copy and paste
information between multiple dom0 windows. As it is now, I can be at
peace that Shift-Ctrl-V won't send any snippets from dom0 clipboard
into a domU.
Even if this used a special key combination, getting used to it means
there is a risk of absent-mindedly triggering it instead of a similar
domU-only function.
Sure there is a risk that a user copy&pastes by accident from dom0. But
why do you think that it's likely that the dom0 clipboard contains
sensitive information? I would expect that it's much more likely to
happen when somebody copies a password form a vault VM (and that's a
usage error which is very tricky to prevent).
Hardware and software configuration details can be considered sensitive.
This is not something that should be enabled by default.
Chris
--
You received this message because you are subscribed to the Google Groups
"qubes-devel" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/qubes-devel/abfbb3e4-a359-ab17-3145-23ec1536f61d%40openmailbox.org.
For more options, visit https://groups.google.com/d/optout.
