Re: [qubes-users] Does VT-d protect against this?

VT-d, intel's crappy IOMMU doesn't protect you from ME by design. There is no disabling ME contrary to what some companies might say - me_cleaner simply nerfs it. If you want a PC without black box supervisor processors here are your open source firmware options: Ultra high performance:

[qubes-users] Re: Does VT-d protect against this?

On Friday, November 10, 2017 at 3:45:07 PM UTC-8, David Schissler wrote: > Researchers find almost EVERY computer with an Intel Skylake and above CPU > can be owned via USB >

[qubes-users] Does VT-d protect against this?

Researchers find almost EVERY computer with an Intel Skylake and above CPU can be owned via USB https://thenextweb.com/security/2017/11/09/researchers-find-almost-every-computer-intel-skylake-cpu-can-owned-via-usb/?amp=1 -- You received this message because you are subscribed to the Google

[qubes-users] HCL - ASUS PRIME B350M-A + AMD Ryzen 7 1700X

32xe%2BSRw%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout. Qubes-HCL-System_manufacturer-System_Product_Name-20171110-213615.yml Description: application/yaml

Re: [qubes-users] /var/log excessive filesystem usage

On 09/26/2017 03:56 AM, Alex wrote: On 09/26/2017 09:44 AM,taii...@gmx.com wrote: Update: deleting the contents of /var/log, /tmp and /var/tmp caused my system to be unbootable which is silly as these are not meant to be permanent locations I received errors about qmemmman not being able to

Re: [qubes-users] IP Redirection to localhost in AppVM

Michael Strasser: > Hi! > > I have an AppVM (Standalone) in which I would like to redirect all (TCP) > traffic going to a specific IP address to localhost. I'm using the AppVM > for Malware Analysis, so I usually have no NetVM connected. I've tried a > few iptables commands that I found via web

Re: [qubes-users] Qubes & Quantum decryption Immunity

In this case you should ask the luks/dmcrypt mailinglist as that is what qubes uses for disk crypto. I doubt anyone here bar the internets favorite folk hero "kedward howden" would piss off some company/government enough for them to spend the hundreds of thousands of dollars one to rent such

Re: [qubes-users] Qubes & Quantum decryption Immunity

On Fri, Nov 10, 2017 at 1:45 PM, Yuraeitha wrote: > Either way, cryptography protected by "structure", should be safe against a > quantum computer, no? while all encryption without structure, would be > extremely vulnerable to quantum computers? I am not sure what you

Re: [qubes-users] IP Redirection to localhost in AppVM

Thanks for the quick reply! And thanks for the heads up, but I know it won't modify it :) Best regards, Michael On 11/10/2017 10:53 PM, David Hobach wrote: > > > On 11/10/2017 10:40 PM, Michael Strasser wrote: >> Hi! >> >> I have an AppVM (Standalone) in which I would like to redirect all

Re: [qubes-users] IP Redirection to localhost in AppVM

On 11/10/2017 10:40 PM, Michael Strasser wrote: Hi! I have an AppVM (Standalone) in which I would like to redirect all (TCP) traffic going to a specific IP address to localhost. I'm using the AppVM for Malware Analysis, so I usually have no NetVM connected. I've tried a few iptables commands

[qubes-users] IP Redirection to localhost in AppVM

Hi! I have an AppVM (Standalone) in which I would like to redirect all (TCP) traffic going to a specific IP address to localhost. I'm using the AppVM for Malware Analysis, so I usually have no NetVM connected. I've tried a few iptables commands that I found via web search, but none of them did

[qubes-users] Re: Please specify which Qubes version you are using when you post

On Thursday, November 9, 2017 at 11:15:16 PM UTC, Unman wrote: > Now there are increasing numbers of people using 4rc2, it would be > really helpful if you specify WHICH version you are using when you post > to the list, particularly if you have a problem.. > Sometimes it's obvious from the

[qubes-users] Reinstallation Failure

The reinstallation of v4.0 rC2 fails with: [ 0.00] Firmware bug: TSC_DEADLINE disabled due to Errata: Please update microcode to version: 0x25 (or later) [ 10.347567] dracut-pre-udev[460]: rpc.idmapd: conf-reinit: open(“(null))”, 0_RDONLY) failed. [ 10.347896] dracut-pre-udev[460]:

[qubes-users] Intel igd: boot freezes on kernels 4.9.5+

I'm using Qubes 3.2, I've got an i6700K cpu connected with hdmi. Only kernel 4.9.45-21 will boot when using Intel igd. If I try to boot from either 4.9.54-21 or 4.9.56-21 using igd the process just hangs at a certain point. I've attempted the solution presented here:

[qubes-users] Qubes & Quantum decryption Immunity

With news, like the 50-bit Quantum computer by IBM announced earlier today, for now only cable to run over over 90 seconds, concerns over the safety of encryption appears to be slowly increasing.

[qubes-users] Re: qubes 3.2 flaw with wifi stoping to work after power safe mode (laptop lid closed)

On Wednesday, November 8, 2017 at 8:42:12 PM UTC, ludwig jaffe wrote: > Hi, I bought a new cheap laptop, Lenovo 110 that uses an SOC with i3. > The wifi is > 00:01.0 Network controller: Realtek Semiconductor Co., Ltd. RTL8821AE > 802.11ac PCIe Wireless Network Adapter > > After a while of using

[qubes-users] Re: qubes 3.2 flaw with wifi stoping to work after power safe mode (laptop lid closed)

On Wednesday, November 8, 2017 at 8:42:12 PM UTC, ludwig jaffe wrote: > Hi, I bought a new cheap laptop, Lenovo 110 that uses an SOC with i3. > The wifi is > 00:01.0 Network controller: Realtek Semiconductor Co., Ltd. RTL8821AE > 802.11ac PCIe Wireless Network Adapter > > After a while of using

Re: [qubes-users] Re: 4.0 rc1 firewall failed stderr cannot execute qrexec-daeomn

On Friday, November 10, 2017 at 4:50:26 PM UTC, Stumpy wrote: > On 10.11.2017 17:45, David Hobach wrote: > > On 11/10/2017 05:41 PM, David Hobach wrote: > >> > >>> Your point about sys-net not working might very well be part of it as > >>> it seems to start sometimes and not others, though the

Re: [qubes-users] Re: 4.0 rc1 firewall failed stderr cannot execute qrexec-daeomn

On 10.11.2017 17:45, David Hobach wrote: On 11/10/2017 05:41 PM, David Hobach wrote: Your point about sys-net not working might very well be part of it as it seems to start sometimes and not others, though the firewall isn't starting 100% of the time. There's a few issues wrt the qubes

Re: [qubes-users] Re: 4.0 rc1 firewall failed stderr cannot execute qrexec-daeomn

On 11/10/2017 05:41 PM, David Hobach wrote: Your point about sys-net not working might very well be part of it as it seems to start sometimes and not others, though the firewall isn't starting 100% of the time. There's a few issues wrt the qubes firewall open on github. The funny/bad

Re: [qubes-users] Re: 4.0 rc1 firewall failed stderr cannot execute qrexec-daeomn

Your point about sys-net not working might very well be part of it as it seems to start sometimes and not others, though the firewall isn't starting 100% of the time. There's a few issues wrt the qubes firewall open on github. The funny/bad thing about it being that if it doesn't start,

[qubes-users] Qubes 4 RC-2 Status - Community driven Wiki-Mail

The idea of this mail thread is to keep an updated list of everything major or relevant, which is broken or not working properly in Qubes 4 RC-2, as well as design surprises for first time Qubes 4 users. For as long as it may remain relevant, it'll simply be bumped to the top of the qubes user

[qubes-users] Re: 4.0 rc1 firewall failed stderr cannot execute qrexec-daeomn

On 10.11.2017 15:19, Stumpy wrote: Hi, I just tried installing rc1 on my computer and it went swimingly until I tried logging in at which point I got the error that was something like /usr/bin/qvm-start, firewall failed stderr cannot execute qrexec-daeomn I noticed on github that adrelanos has

Re: [qubes-users] installing a clean template

Speaking of which, did anyone try move over a 3.2. template to Qubes 4, and manually re-install this way? feasible perhaps? - - - - - - On Friday, November 10, 2017 at 12:40:05 AM UTC, Chris Laprise wrote: > On 11/09/2017 06:36 PM, Unman wrote: > > On Tue, Oct 24, 2017 at 09:31:21PM -0500, Ted

[qubes-users] Re: 4.0 rc1 firewall failed stderr cannot execute qrexec-daeomn

On Friday, November 10, 2017 at 2:20:02 PM UTC, Stumpy wrote: > Hi, I just tried installing rc1 on my computer and it went swimingly > until I tried logging in at which point I got the error that was > something like > /usr/bin/qvm-start, firewall failed stderr cannot execute qrexec-daeomn > I

[qubes-users] 4.0 rc1 firewall failed stderr cannot execute qrexec-daeomn

Hi, I just tried installing rc1 on my computer and it went swimingly until I tried logging in at which point I got the error that was something like /usr/bin/qvm-start, firewall failed stderr cannot execute qrexec-daeomn I noticed on github that adrelanos has already posted about this bug and

[qubes-users] Re: Xfce launcher loses dom0 entries

On Thursday, November 9, 2017 at 9:20:52 PM UTC, Chris Laprise wrote: > On Qubes R4-rc2, after reinstalling a template I noticed that only my > guest-vm entries remained in the Xfce launcher menu. > > How do I get the dom0 items back? > > -- > > Chris Laprise, tas...@posteo.net >

[qubes-users] Re: Is there a way to use secure boot with qubes?

On Thursday, November 9, 2017 at 11:14:13 PM UTC, Guerlan wrote: > On Thursday, November 9, 2017 at 9:27:01 AM UTC-2, blacklight wrote: > > On Wednesday, 8 November 2017 20:52:14 UTC, Guerlan wrote: > > > My computer complains about bad signature when I try to install qubes. Is > > > there a way

[qubes-users] Re: Xfce launcher loses dom0 entries

On Thursday, 9 November 2017 21:20:52 UTC, Chris Laprise wrote: > On Qubes R4-rc2, after reinstalling a template I noticed that only my > guest-vm entries remained in the Xfce launcher menu. > > How do I get the dom0 items back? > > -- > > Chris Laprise, tas...@posteo.net >

[qubes-users] Re: Is there a way to use secure boot with qubes?

On Thursday, 9 November 2017 23:14:13 UTC, Guerlan wrote: > On Thursday, November 9, 2017 at 9:27:01 AM UTC-2, blacklight wrote: > > On Wednesday, 8 November 2017 20:52:14 UTC, Guerlan wrote: > > > My computer complains about bad signature when I try to install qubes. Is > > > there a way to