[Tails-dev] Idea
Why don't you have any idea to use a virtual machine to install the system and the bootloader? ___ Tails-dev mailing list Tails-dev@boum.org https://www.autistici.org/mailman/listinfo/tails-dev To unsubscribe from this list, send an empty email to tails-dev-unsubscr...@boum.org.
Re: [Tails-dev] idea: stop HDD by default?
Hi, flapflap wrote (07 Jan 2015 00:51:10 GMT) : bertagaz: We're doing so since 0.8, see https://labs.riseup.net/code/issues/6076 Hmm that is strange. On my laptop, the internal hard disk always spins and I never experienced it to stop doing so (plain booting from USB stick). We've started discussing this on the Please review merge bugfix/less-aggressive-hard-disk-APM-on-AC thread, back in March 2013 (and possibly the thread starts earlier). The discussion was a bit painful, so I never got around to finish the draft email that's been waiting half-completed in local storage. I'll take this heads up as an opportunity to get back to it, hopefully in the next few days. Thanks! Cheers, -- intrigeri ___ Tails-dev mailing list Tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev To unsubscribe from this list, send an empty email to tails-dev-unsubscr...@boum.org.
Re: [Tails-dev] idea: stop HDD by default?
Hi, On Tue, Jan 06, 2015 at 04:53:28PM +, flapflap wrote: I was thinking whether it makes sense to by default spin-down the harddisks, e.g. via hdparm -y /dev/sdX or hdparm -Y /dev/sdX That would have the advantage of reduced power consumption, less noise (up to complete silence when the fan is not spinning), and proof to the user that Tails is not accessing the HDD. Of course, the HDD need to spin-up again if the user mounts it. but what I cannot comment on is whether there may also be difficulties from spinning-down the HDD (hardware failure? ...) We're doing so since 0.8, see https://labs.riseup.net/code/issues/6076 cheers, bert. ___ Tails-dev mailing list Tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev To unsubscribe from this list, send an empty email to tails-dev-unsubscr...@boum.org.
Re: [Tails-dev] idea: stop HDD by default?
Hi, bertagaz: On Tue, Jan 06, 2015 at 04:53:28PM +, flapflap wrote: I was thinking whether it makes sense to by default spin-down the harddisks, e.g. via hdparm -y /dev/sdX or hdparm -Y /dev/sdX snip We're doing so since 0.8, see https://labs.riseup.net/code/issues/6076 Hmm that is strange. On my laptop, the internal hard disk always spins and I never experienced it to stop doing so (plain booting from USB stick). ~flapflap signature.asc Description: OpenPGP digital signature ___ Tails-dev mailing list Tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev To unsubscribe from this list, send an empty email to tails-dev-unsubscr...@boum.org.
[Tails-dev] idea: stop HDD by default?
Hi all, I was thinking whether it makes sense to by default spin-down the harddisks, e.g. via hdparm -y /dev/sdX or hdparm -Y /dev/sdX That would have the advantage of reduced power consumption, less noise (up to complete silence when the fan is not spinning), and proof to the user that Tails is not accessing the HDD. Of course, the HDD need to spin-up again if the user mounts it. but what I cannot comment on is whether there may also be difficulties from spinning-down the HDD (hardware failure? ...) ~flapflap signature.asc Description: OpenPGP digital signature ___ Tails-dev mailing list Tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev To unsubscribe from this list, send an empty email to tails-dev-unsubscr...@boum.org.
Re: [Tails-dev] Idea: document creating Tails USB thumb drive via VirtualBox
Hi, Lukasz Dobrogowski wrote (08 Jan 2013 22:53:54 GMT) : However, this seems not true. If I understand https://www.virtualbox.org/manual/ch03.html#idp11494896 correctly, USB 1.0/1.1 (OHCI/UHCI) passthrough is implemented as free software Great news! USB 1.1 is IMHO good enough for installing Tails on a pendrive, Sure, agreed. so... who's up to writing a tutorial on this? ;-) How about starting by trying to clone Tails onto a USB stick using this USB 1.1 support, and in the process, quickly writing down every step that's needed (including copy'n'pasting the exact error messages, GUI elements phrasing)? This surely would make it a lot easier for anyone who will want to write the tutorial :) Cheers, -- intrigeri | GnuPG key @ https://gaffer.ptitcanardnoir.org/intrigeri/intrigeri.asc | OTR fingerprint @ https://gaffer.ptitcanardnoir.org/intrigeri/otr.asc ___ tails-dev mailing list tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev
[Tails-dev] Idea: document creating Tails USB thumb drive via VirtualBox
Hello, Today on #tails we had an interesting revelation; i.e. creating Tails USB stick is quite often done via a VM with USB passthrough, such as VirtualBox. So it could be nice to document this method on https://tails.boum.org/doc/first_steps/usb_installation/ There was a concern from intrigeri: [23:23:03] intrigeri This would be great IMHO, but one problem is that there's no free software virtual machine with USB passthrough support that we can easily document there. AFACT only qemu/kvm/libvirt support this, and even with virt-manager, it's non-trivial to setup. However, this seems not true. If I understand https://www.virtualbox.org/manual/ch03.html#idp11494896 correctly, USB 1.0/1.1 (OHCI/UHCI) passthrough is implemented as free software and only USB 2.0 (EHCI) support is part of the proprietary Oracle extension pack. USB 1.1 is IMHO good enough for installing Tails on a pendrive, so... who's up to writing a tutorial on this? ;-) Cheers, Ćukasz Dobrogowski signature.asc Description: OpenPGP digital signature ___ tails-dev mailing list tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev
[Tails-dev] Idea or something
Hi dear tails-team, first of all, I like your cd and think, it is the best way for anonymity. But there is something, I want to suggest to improve security. Although everything is sent over TOR, I think you should make sure, the MAC- address of every network device should be changed at boot. You ca do this by macchanger. Wireless cards and network cards (wlan0 and eth0) should at least got a changed MAC-address, but also should every new device get a new MAC (i think of bluetooth or usb-3g-devices). None of physical information of the used computer should be known to the outside. I do not know, if it is possible, to temporaryly change MAC-addresses of used routers, but this option would be nice, too. And of course (and I guess, this is already implemented) NONE, and really mean NONE services should get access to any parts of the used computer (no services!!!). Has tails a firewall active? (iptables). If yes, it should be completely (and mean COMPLETELY) closed, and should be opened by the user when he is needing it. I imagine a nice GUI choosing a whitelist in an understanding way: Either open ports (for experienced users) or open by description (i.e. sending mail , receiving mail or similar). Whjat do you think? I am looking forward to your answer. Have a nice weekend Hans-J. Ullrich ___ tails-dev mailing list tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev
Re: [Tails-dev] Idea or something
(CC'ing you. I don't know if you are subscribed.) Hans-J. Ullrich: Although everything is sent over TOR, I think you should make sure, the MAC- address of every network device should be changed at boot. You ca do this by macchanger. See https://tails.boum.org/todo/macchanger/. Feel free to provide patches. Wireless cards and network cards (wlan0 and eth0) should at least got a changed MAC-address, but also should every new device get a new MAC (i think of bluetooth or usb-3g-devices). Feel free to tell us how to do the later. Has tails a firewall active? (iptables). If yes, it should be completely (and mean COMPLETELY) closed, and should be opened by the user when he is needing it. This question shows that you have hardly done any research before asking. Please look at Tails documentation https://tails.boum.org/doc/index.en.html and contribute section https://tails.boum.org/contribute/index.en.html. -- Ague pgph9GE9AIFyS.pgp Description: PGP signature ___ tails-dev mailing list tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev