On Saturday, October 15, 2016 at 8:16:37 PM UTC-4, [email protected] wrote: > look guys if someone compromize sys-net then go route trafic by fake dns and > sites.You paste your credit card or something and all data goes to the hacker.
sys-net is considered untrusted as it is, consider your router too most likely. You really shouldn't presume anything not encrypted as private. always make sure site is https if putting in a credit card, a tip i got on mailing list when using qubes is to go to the site in your normal appvm and look at the cert. Then load the same page up from a torvm and make sure the cert matches. You should also make that qube https only in firewall settings. and use https everywhere using the setting to block everything not encrypted. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/c04788ad-7b41-4b87-969d-9bb76ef59909%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
