-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On Wed, Sep 14, 2016 at 11:22:18AM -0700, Vít Šesták wrote: > Just noting two more pitfalls: > > 1) When you create a new device, you should overwrite all the content > (standard mkfs is not enough) before attaching it to a VM. If you don't do > so, the VM might get some old data leaked from another VM. Maybe thin LVs > have a different behavior.
LVM thin don't have this problem, as blocks are allocated at first write only (reading blocks not written before will yield zeros). But we may want to do the clear data anyway at VM removal, for various reasons (like anti-forensics). > 2) When booting from Qubes installation image and trying to perform system > recovery, it seems to scan all LVs, regardless they are dom0 LVs or domU LVs. > This is potentially dangerous (filesystem parsing bugs). And since the > installation image is not updated frequently, there is even higher > probability of a known unpatched vulnerability. Maybe it could be determined > by the name if it should be scanned. Yes, we'll probably include the same udev rules (blacklisting scanning VM-related devices) also in installer/recovery image. > Since LVM thin volumes are to be used in Qubes 4.0, I'd like to ask you if > Qubes addresses those two issues there. Thanks for reminding this, I've created an issue to not forget about this one: https://github.com/QubesOS/qubes-issues/issues/2319 - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQEcBAEBCAAGBQJX2cFHAAoJENuP0xzK19cslpAH/j7fM3Z03hwBPMVf2OCtrLxL 3tAYxxchi1RDCJ8HaAO5v8orNXnrbSIBhvcTduLEyK7/STsErLeD06Y+arn03gTJ XwkI07DziBxu/TqtN0ahz6h4ryztplJZf2L8snoPO+OMpUqQZbLuNQvOSk+BEphn dIne8FrMTKjGerBdDt732qiHt5kdUXYQUFP6GFklXXkyJhlBVO9x+1myDu4FFf34 e4ynaSoOw6x3BH8+kMNhGLGEr1PA03hXV6+Whfj4J0grsGJEkVq8jBKAaHCt0pba kIBjs0QUJDVPeGKzZccnitx9XJo9Dumbhk+9UYLm6izVBya7x1+jsJQVnWWW64o= =WBMc -----END PGP SIGNATURE----- -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/20160914212943.GS31510%40mail-itl. For more options, visit https://groups.google.com/d/optout.
