-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On Tue, Jun 07, 2022 at 05:34:10PM -0700, J Holsapple wrote: > Yeah, a more integrated BSD OS would be nice. Something like Windows tools. > The only gui I'd be interested in though is macos. > > In this case, I'm just running the cli and using the webapp for management. > Sure it's a HVM and is more isolated and more resource hungry. Yet it's a > lot like my stand alone pfSense box. It just works. And over the months > I've gone back to my integration guide/script and refined it. > > Keep in mind that I answered the OP's question for the use case where "any" > means a HVM with a CLI and using a webapp for "gui" management. The > integration guide/script is optional for people wanting to replicate my > implementation of pfSense/OPNsense. > > BTW, could you expound a little on your concern for xnf(4) (netfront) and > xbf(4) (blkfront) drivers? Or point me to a reference? I wish to better > understand your concern for threat vectors.
Right now, the OpenBSD netfront and netback drivers are not hardened against malicious backends, so they can be attacked by malicious backends. - -- Sincerely, Demi Marie Obenour (she/her/hers) Invisible Things Lab -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEdodNnxM2uiJZBxxxsoi1X/+cIsEFAmKj3gYACgkQsoi1X/+c IsHgQRAAqFGBEd8zJCSZ4W8+qbIzbs8/rMojEqrqcZIjBo1PtW4JHgNbl42/PEAc yRs1FNVu7TVELibYle0INnTVR6emm89P5s3r/ym4x0tghfuUAM3yQeZV8g+g5ivQ +UP/7kLN+Gu6gPa4YNANMctRs3FP5Y7KwuIyzvO3yhBgEC4cS10sjM3KYaO80Ue4 ZFjjyg504ZvllbOjgid2LR18j4mC4BUe1f/Lf/IviUggfK/ZCAW3rExqlMU5KbGr i8/3XXRl4YFLXsbrCm20vUvQlW844GkKuECW8OMbjt2gkt3f/2gSeT+Xl8FVd8TD oAMijumqmRKlsm2dd3i58blQjJ5c1T5Hzfwb0VJybN9YUOCjil+oxGOL9nJqkTig bUh6eojSDi65Ld8WwE1KL2vYKO7JiXZ0la9whZeUG6bFs68Gx7AWcfZ+xfJ4k9Ga +FV89WiM79R+HJvVpZphxT1xRdNaVP73rHKIpar88pyUOorZHfM71ANfj1FfOuCY v8FAU9ByLiwgO4Hv3eS6XXAUsTi9NMlWFNeO/Zg9Pc/1Au0sglBR1+LIOmq/iRtF N7j0fPoA0Fp5ZnDOgq2iQ45SzPY3IqEw9ra4dTiBlP5Q7l9RG2Nu5aTyWmjtE55x ASeeo379ZVvPFhDdq8DBzUElTFxURa5zrOWZJoTvltQf2TO66wI= =5I/r -----END PGP SIGNATURE----- -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/YqPeBkmp21FXJaE9%40itl-email.
