On Thursday, June 29, 2017 at 2:11:15 PM UTC-4, Vít Šesták wrote: > I feel this to be controversial. It is right as long as you implement it > carefully (How would you handle the separator being present in the content of > the file? How would you sanitize the filenames? And so on…) AND you don't > exceed the complexity of tar format. > > Regards, > Vít Šesták 'v6ak'
For my uses, I would trust tar over my own ability to handle the sanitization. As for potential compromise to the destination VM - all qvm-copy-to-vm should be done moving down the ladder of trustworthiness anyway, right? If this file were going to compromise the destination VM, then presumably it's come from a VM that is not trustworthy to begin with. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/822e10f6-8250-4280-9bbb-7bc829bf63e6%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
