[qubes-users] XSAs released on 2024-04-09

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is affected*. ## XSAs that DO affect the security of Qubes OS The following XSAs *do affect* the security of Qubes

[qubes-users] QSB-102: Multiple speculative-execution vulnerabilities: Spectre-BHB, BTC/SRSO (XSA-455, XSA-456)

S signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Documentation Signing Key)" imported gpg: key AAA743B42FBC07A9: public key "Brennan Novak (Qubes Website &

Re: [qubes-users] Qubes OS 4.2.1 has been released!

On 4/2/24 1:20 AM, qubist wrote: > On Mon, 1 Apr 2024 16:33:13 -0700 Andrew David Wong wrote: > >> [...] to the average user [...] > > Targeting abstract entities is confusing. > Feel free to replace that part with "to the vast majority of users," then. -- Yo

Re: [qubes-users] Qubes OS 4.2.1 has been released!

On 4/1/24 2:38 PM, Demi Marie Obenour wrote: > On Sun, Mar 31, 2024 at 03:45:29PM -0700, Andrew David Wong wrote: >> On 3/27/24 2:57 AM, qubist wrote: >>> On Tue, 26 Mar 2024 14:46:12 -0700 Andrew David Wong wrote: >>> >>>> ## What's new in Qubes OS 4.

Re: [qubes-users] Qubes OS 4.2.1 has been released!

On 3/27/24 2:57 AM, qubist wrote: > On Tue, 26 Mar 2024 14:46:12 -0700 Andrew David Wong wrote: > >> ## What's new in Qubes OS 4.2.1? >> >> [...] >> >> For more information about the changes included [...] > > It would be much better to have

Re: [qubes-users] Star Labs StarBook certified with intel only?

On 3/25/24 11:25 AM, 'జిందం వాఐి' via qubes-users wrote: > * i see an option to purchase > laptop for amd also on their > website > * is this certified with only > intel? > As far as I know, that's correct, but you should check with Star Labs to be sure. The original certification announcement

[qubes-users] Qubes OS 4.1 reaches EOL on 2024-06-18

Dear Qubes Community, Qubes OS 4.1 is scheduled to reach end-of-life (EOL) on 2024-06-18, approximately three months from the date of this announcement. ## Recommended actions If you're already using Qubes 4.2, then you don't have to do anything. This announcement doesn't affect you. If

[qubes-users] Qubes OS 4.2.1 has been released!

Dear Qubes Community, We're pleased to announce the stable release of Qubes OS 4.2.1! This [patch release](#what-is-a-patch-release) aims to consolidate all the security patches, bug fixes, and other updates that have occurred since the release of Qubes 4.2.0. Our goal is to provide a secure

[qubes-users] Update for QSB-101: Register File Data Sampling (XSA-452) and Intel Processor Return Predictions Advisory (INTEL-SA-00982)

ot; imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Documentation Signing Key)" imported gpg: key AAA743B42FBC07A9: public key "Brennan Novak (Qubes Website & Docume

[qubes-users] Update for QSB-101: Register File Data Sampling (XSA-452) and Intel Processor Return Predictions Advisory (INTEL-SA-00982)

uot;HW42 (Qubes Signing Key)" imported gpg: key DA0434BC706E1FCF: public key "Simon Gaiser (Qubes OS signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Document

[qubes-users] Qubes OS 4.2.1-rc1 is available for testing

Dear Qubes Community, We're pleased to announce that the first [release candidate (RC)](#what-is-a-release-candidate) for Qubes OS 4.2.1 is now available for [testing](https://www.qubes-os.org/doc/testing/). This [patch release](#what-is-a-patch-release) aims to consolidate all the security

[qubes-users] Qubes OS Summit 2024: September 20-22 in Berlin

Dear Qubes Community, In conjunction with [3mdeb](https://3mdeb.com/), the sixth edition of our Qubes OS Summit will be held live this year from September 20 to 22 in Berlin, Germany! For more information about this event, please see: If

[qubes-users] XSAs released on 2024-03-12

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is affected*. ## XSAs that DO affect the security of Qubes OS The following XSAs *do affect* the security of Qubes

[qubes-users] QSB-101: Register File Data Sampling (XSA-452)

ot;HW42 (Qubes Signing Key)" imported gpg: key DA0434BC706E1FCF: public key "Simon Gaiser (Qubes OS signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Do

[qubes-users] Qubes Canary 038

gpg: key DA0434BC706E1FCF: public key "Simon Gaiser (Qubes OS signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Documentation Signing Key)" imported gpg: key A

Re: [qubes-users] 80x24 geometry used by qvm-console-dispvm

On 3/6/24 10:37 AM, qubist wrote: > On Wed, 6 Mar 2024 18:14:53 +0100 Marek Marczykowski-Górecki wrote: > >> The way that console works does not support sending information about >> window size (changes). > > Do I understand correctly there is no way to change it and it is > impossible, hence

[qubes-users] Qubes-certified NovaCustom NV41 Series laptop now available with Heads firmware

Dear Qubes Community, Last year, we [announced](https://www.qubes-os.org/news/2023/05/03/novacustom-nv41-series-qubes-certified/) that the [NovaCustom NV41 Series](https://novacustom.com/product/nv41-series/) became a [Qubes-certified computer](https://www.qubes-os.org/doc/certified-hardware)

[qubes-users] XSAs released on 2024-02-27

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is not affected*. ## XSAs that DO affect the security of Qubes OS The following XSAs *do affect* the security of

Re: [qubes-users] Where do I verify the gpg key? Do the docs need updating?

On 2/16/24 12:38 PM, Allen Schultz wrote: > Hi, > > I''m trying to verify the key I downloaded from the Qubes Download page > . According to the documentation on > the Verfying Signatures > , it looks

[qubes-users] Re: Fedora 39 templates available; Fedora 38 approaching EOL

On 2/13/24 4:17 AM, Andrew David Wong wrote: > Dear Qubes Community, > > New Fedora 39 templates are now available in standard, > [minimal](https://www.qubes-os.org/doc/templates/minimal/), and > [Xfce](https://www.qubes-os.org/doc/templates/xfce/) varieties. In additio

[qubes-users] Fedora 39 templates available; Fedora 38 approaching EOL

Dear Qubes Community, New Fedora 39 templates are now available in standard, [minimal](https://www.qubes-os.org/doc/templates/minimal/), and [Xfce](https://www.qubes-os.org/doc/templates/xfce/) varieties. In addition, Fedora 38 is currently

[qubes-users] Whonix 17 templates available for Qubes OS 4.1

Dear Qubes Community, Until now, Whonix 17 has been available only on Qubes OS 4.2. Since [Whonix 16 reached EOL (end-of-life) on 2024-01-18](https://www.qubes-os.org/news/2023/12/22/whonix-16-approaching-eol/), this left users still on Qubes OS 4.1 without a supported way to use Whonix. In

[qubes-users] XSAs released on 2024-01-30

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is affected*. ## XSAs that DO affect the security of Qubes OS The following XSAs *do affect* the security of Qubes

[qubes-users] XSAs released on 2024-01-22

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is not affected*. ## XSAs that DO affect the security of Qubes OS The following XSAs *do affect* the security of

[qubes-users] QSB-099: Qrexec policy leak via policy.RegisterArgument service

gning Key)" imported gpg: key DA0434BC706E1FCF: public key "Simon Gaiser (Qubes OS signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Documentation Signing Key)&

[qubes-users] The Star Labs StarBook is Qubes-certified!

Dear Qubes Community, It is our pleasure to announce that the [Star Labs StarBook](https://starlabs.systems/pages/starbook) is [officially certified](https://www.qubes-os.org/doc/certified-hardware/) for Qubes OS Release 4! ## The Star Labs StarBook The [Star Labs

Re: [qubes-users] Some issues during / after upgrading to 4.2.0

On 1/9/24 2:11 PM, Ulrich Windl (Google) wrote: > Hi! > > Sorry for the delay, but attached is what I see. > > Kind regards, > Ulrich > Thank you for your report. This is a known bug: https://github.com/QubesOS/qubes-issues/issues/8725 > 06.01.2024 04:10:29 Andrew D

Re: [qubes-users] Some issues during / after upgrading to 4.2.0

On 1/4/24 3:20 PM, Ulrich Windl wrote: > * fedora-38 is obsolete already? I thought fedora-37 is??? > No, Fedora 38 has not reached EOL: https://docs.fedoraproject.org/en-US/releases/eol/ -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To

[qubes-users] Whonix 16 approaching EOL

Dear Qubes Community, Whonix 16 is currently [scheduled](https://www.whonix.org/wiki/About#Qubes_Hosts) to reach EOL (end-of-life) on 2024-01-18. We strongly recommend that all Whonix users upgrade to Whonix 17 before then. For more information, see [Upgrading to avoid

[qubes-users] Qubes OS 4.2.0 has been released!

Dear Qubes Community, Qubes OS 4.2.0 brings a host of new features, major improvements, and numerous bug fixes. The ISO and associated [verification files](https://www.qubes-os.org/security/verifying-signatures/) are available on the [downloads](https://www.qubes-os.org/downloads/) page. ##

Re: [qubes-users] Re: Introducing Qubes 3.0 LiveUSB (alpha)

On 12/17/23 3:24 PM, leore...@gmail.com wrote: > Hello Joanna there is any iso more recent? > The "LiveUSB" version of Qubes is discontinued. However, you can install Qubes OS onto a USB drive and run it from there. Please see the installation guide for details:

[qubes-users] QSB-098: CPU microcode updates not loaded with dom0 kernel version 6.6.x

gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Documentation Signing Key)" imported gpg: key AAA743B42FBC07A9: public key "Brennan Novak (Qubes Website & Documentation Signing)"

[qubes-users] XSAs released on 2023-12-12

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is not affected*. ## XSAs that DO affect the security of Qubes OS The following XSAs *do affect* the security of

[qubes-users] Qubes Canary 037

Signing Key)" imported gpg: key DA0434BC706E1FCF: public key "Simon Gaiser (Qubes OS signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Documentation Signing Key)

[qubes-users] Qubes OS 4.2.0-rc5 is available for testing

Dear Qubes Community, We're pleased to announce that the fifth [release candidate (RC)](#what-is-a-release-candidate) for Qubes OS 4.2.0 is now available for [testing](https://www.qubes-os.org/doc/testing/). The ISO and associated [verification

[qubes-users] QSB-097: "Reptar" Intel redundant prefix vulnerability

imon Gaiser (Qubes OS signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Documentation Signing Key)" imported gpg: key AAA743B42FBC07A9: public key "Brennan N

[qubes-users] XSAs released on 2023-11-14

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is affected* by at least one of these XSAs. ## XSAs that DO affect the security of Qubes OS The following XSAs *do

[qubes-users] QSB-096: BTC/SRSO fixes not fully effective (XSA-446)

gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Documentation Signing Key)" imported gpg: key AAA743B42FBC07A9: public key "Brennan Novak (Qubes Website & Documentation Signing)"

Re: [qubes-users] Fedora 37 approaching EOL

On 10/22/23 8:31 AM, Ulrich Windl (Google) wrote: > Hi! > > Wondering about "Dom0 upgraded to Fedora 37 > (#6982[https://github.com/QubesOS/qubes-issues/issues/6982])": > Is it planned to upgrade before final release? > > Regards, > Ulrich > No, please see our note on dom0 and EOL:

[qubes-users] Qubes OS 4.2.0-rc4 is available for testing

Dear Qubes Community, We're pleased to announce that the fourth [release candidate (RC)](#what-is-a-release-candidate) for Qubes OS 4.2.0 is now available for [testing](https://www.qubes-os.org/doc/testing/). The ISO and associated [verification

[qubes-users] Fedora 37 approaching EOL

Dear Qubes Community, Fedora 37 is currently [scheduled](https://fedorapeople.org/groups/schedule/f-39/f-39-key-tasks.html) to reach EOL ([end-of-life](https://fedoraproject.org/wiki/End_of_life)) on 2023-11-21. We strongly recommend that all users

[qubes-users] XSAs released on 2023-10-10

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is affected*. Therefore, *user action is required*. ## XSAs that DO affect the security of Qubes OS The following

[qubes-users] QSB-095: Missing IOMMU TLB flushing on x86 AMD systems

ecked due to a missing key gpg: key 8C05216CE09C093C: public key "HW42 (Qubes Signing Key)" imported gpg: key DA0434BC706E1FCF: public key "Simon Gaiser (Qubes OS signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key

[qubes-users] XSAs released on 2023-09-25

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is affected*. Therefore, *user action is required*. ## XSAs that DO affect the security of Qubes OS The following

[qubes-users] QSB-094: x86/AMD: Divide speculative information leak

216CE09C093C: 1 signature not checked due to a missing key gpg: key 8C05216CE09C093C: public key "HW42 (Qubes Signing Key)" imported gpg: key DA0434BC706E1FCF: public key "Simon Gaiser (Qubes OS signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not chec

Re: [qubes-users] Update problem with a 'debian-12-minimal' based template

On 9/26/23 10:29 PM, Viktor Ransmayr wrote: > Hello community, > > I've started to update my Debian-based VMs from 11 to 12. > > As part of this exercise, I also switched from 'debian-11' to > 'debian-12-minimal' as the initial template to clone from. > > In general I'm quite happy with the

[qubes-users] XSAs released on 2023-09-20

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is not affected*. Therefore, *no user action is required*. ## XSAs that DO affect the security of Qubes OS The

[qubes-users] Tickets for Qubes OS Summit 2023 are now available!

Dear Qubes Community, The following announcement is from 3mdeb: [](https://www.qubes-os.org/attachment/posts/qubes-os-summit-2023-tickets.png) We have options for

[qubes-users] Qubes Canary 036

" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Documentation Signing Key)" imported gpg: key AAA743B42FBC07A9: public key "Brennan Novak (Qubes Website & Documentation Signing

Re: [qubes-users] Re: The NitroPC Pro is Qubes-certified!

On 9/7/23 1:38 PM, Leo28C wrote: > Is it "not certified" as in it doesn't run at all, or is it just to stop > people from paying an extra 3 grand when the OS is software-rendered? > When Nitrokey asked for the NitroPC Pro to be Qubes-certified, they did not ask for any discrete graphics

[qubes-users] Re: The NitroPC Pro is Qubes-certified!

On 9/6/23 10:57 AM, Andrew David Wong wrote: > Dear Qubes Community, > > It is our pleasure to announce that the [NitroPC > Pro](https://shop.nitrokey.com/shop/product/nitropc-pro-523) is [officially > certified](https://www.qubes-os.org/doc/certified-hardware/) for Qubes

[qubes-users] XSAs released on 2023-09-05

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is not affected*. Therefore, *no user action is required*. ## XSAs that DO affect the security of Qubes OS The

[qubes-users] Qubes OS 4.2.0-rc3 is available for testing

Dear Qubes Community, We're pleased to announce that the third [release candidate (RC)](#what-is-a-release-candidate) for Qubes OS 4.2.0 is now available for [testing](https://www.qubes-os.org/doc/testing/). The ISO and associated [verification

Re: [qubes-users] Error installing Debian-12 template

On 8/28/23 1:53 PM, Ulrich Windl wrote: > Hi! > > Following the instructions at > https://www.qubes-os.org/doc/templates/debian/#installing I repeatedly got > this error messages: > > $ sudo qubes-dom0-update qubes-template-debian-12 > Redirecting to 'qvm-template install  debian-12' >

[qubes-users] Qubes OS 4.2.0-rc2 is available for testing

Dear Qubes Community, We're pleased to announce that the second [release candidate](#what-is-a-release-candidate) (RC) for Qubes OS 4.2.0 is now available for [testing](https://www.qubes-os.org/doc/testing/). Qubes 4.2.0-rc2 is available on the [downloads](https://www.qubes-os.org/downloads/)

[qubes-users] Re: Debian 12 templates available

> [supported template releases] Link: https://www.qubes-os.org/doc/supported-releases/#templates -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to

[qubes-users] Debian 12 templates available

Dear Qubes Community, The following new templates are now available: *Qube OS 4.1* - Debian 12 - Debian 12 [minimal](https://www.qubes-os.org/doc/templates/minimal/) *Qubes OS 4.2-rc1* - Debian 12 - Debian 12 [minimal](https://www.qubes-os.org/doc/templates/minimal/) - Debian 12

Re: [qubes-users] "GVFS is not available"

On 8/27/23 10:43 AM, Demi Marie Obenour wrote: > On Sat, Aug 26, 2023 at 10:39:22PM -0700, Andrew David Wong wrote: >> On 8/26/23 8:55 AM, ales...@magenta.de wrote: >>> Steve Coleman: >>>> >>>> >>>> On Sat, Aug 12, 2023, 12:54 PM >

Re: [qubes-users] "GVFS is not available"

On 8/26/23 8:55 AM, ales...@magenta.de wrote: > Steve Coleman: >> >> >> On Sat, Aug 12, 2023, 12:54 PM > > wrote: >> >>     ales...@magenta.de : >> > I am using a fresh installation of Qubes 4.1.1. >> > >> > When I use the File

[qubes-users] CORRECTION: Qubes OS Summit 2023: OCTOBER 6-8 in Berlin

Dear Qubes Community, _My apologies for the incorrect subject line in my previous email. The correct month is OCTOBER, not September!_ In conjunction with [3mdeb](https://3mdeb.com/), the fifth edition of our Qubes OS Summit will be held live this year from October 6 to 8 in Berlin, Germany!

[qubes-users] Qubes OS Summit 2023: September 6-8 in Berlin

Dear Qubes Community, In conjunction with [3mdeb](https://3mdeb.com/), the fifth edition of our Qubes OS Summit will be held live this year from October 6 to 8 in Berlin, Germany! For more information about this event, including the CFP (which is open until October 2), please see:

[qubes-users] XSAs released on 2023-08-08

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is affected*. Therefore, *user action is required*. ## XSAs that DO affect the security of Qubes OS The following

[qubes-users] QSB-093: Transient execution vulnerabilities in AMD and Intel CPUs

Gaiser (Qubes OS signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Documentation Signing Key)" imported gpg: key AAA743B42FBC07A9: public key "Brennan Novak (

[qubes-users] Changing the way we use milestones in the issue tracker

## Summary Issues will no longer be assigned to milestones by default. Most issues won't have milestones. The Qubes developers will manually assign issues to milestones. We'll use labels like "affects-4.1" and "affects-4.2" to represent affected releases instead of milestones. The "Release

[qubes-users] QSB-092: Buffer overrun in Linux netback driver (XSA-432)

uot;HW42 (Qubes Signing Key)" imported gpg: key DA0434BC706E1FCF: public key "Simon Gaiser (Qubes OS signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Documentatio

[qubes-users] Update for QSB-090: Zenbleed (CVE-2023-20593, XSA-433)

key "Simon Gaiser (Qubes OS signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Documentation Signing Key)" imported gpg: key AAA743B42FBC07A9: public key "

[qubes-users] XSAs released on 2023-08-01

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is not affected*. Therefore, *no user action is required*. ## XSAs that DO affect the security of Qubes OS The

Re: [qubes-users] Disabling Hibernation universally

On 7/29/23 8:48 AM, ales...@magenta.de wrote: > I am still in the process of configuring Qubes (4.1.1). I am trying now to > disable Hibernation at all level of the system. > > I couldn't find any reference of Hibernation in the official documentation or > the Wiki. Could someone describe the

[qubes-users] QSB-091: Windows PV drivers potentially compromised

"Simon Gaiser (Qubes OS signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Documentation Signing Key)" imported gpg: key AAA743B42FBC07A9: public key "Brennan

[qubes-users] XSAs released on 2023-07-24

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is affected*. Therefore, *user action is required*. ## XSAs that DO affect the security of Qubes OS The following

[qubes-users] QSB-090: Zenbleed (CVE-2023-20593, XSA-433)

to a missing key gpg: key 8C05216CE09C093C: public key "HW42 (Qubes Signing Key)" imported gpg: key DA0434BC706E1FCF: public key "Simon Gaiser (Qubes OS signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A

Re: [qubes-users] QubesIncoming folder in /tmp ??

On 6/30/23 3:27 AM, haaber wrote: > Hi I was wondering if it would not me preferable (at least in some VM's) > to delocalise the QubesIncoming folder in /tmp to have it "cleaned up" > regularly. It's a pain to do so manually. Is there a problem doing so ?  > What would be the cleanest way to do

Re: [qubes-users] split firefox & thunderbird credentials?

On 6/22/23 7:38 AM, haaber wrote: > I was wondering if the awesome split-ssh and split-gpg  family could be > extended by a split-mozilla brother, that outsources passwords to vault > without exposing them? The lack of such a feature obliges me *not* to > save them within the two apps, which is a

Re: [qubes-users] Q4.1 xfce - "clicks in the void"

On 6/5/23 3:39 AM, haaber wrote: > I often experience clicks that get lost "in the void" meaning that the > actual xfce windows does not seem to receive them. > > Typical example: I use firefox, and a noscript pop-up ("load > anonymously") with a button to click on: but I can't. What helps then,

[qubes-users] Qubes OS 4.2.0-rc1 is available for testing

Dear Qubes Community, We're pleased to announce that the first [release candidate](#what-is-a-release-candidate) for Qubes OS 4.2.0 is now available for [testing](https://www.qubes-os.org/doc/testing/). This [minor release](#what-is-a-minor-release) includes several new features and

[qubes-users] Qubes Canary 035

rted gpg: key DA0434BC706E1FCF: public key "Simon Gaiser (Qubes OS signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Documentation Signing Key)" imported gp

[qubes-users] XSAs released on 2023-05-16

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is not affected*. Therefore, *no user action is required*. ## XSAs that DO affect the security of Qubes OS The

Re: [qubes-users] Best practice VPN in Qubes

On 5/13/23 7:33 AM, taran1s wrote: > > > Demi Marie Obenour: >> On Sat, May 13, 2023 at 10:57:00AM +, Qubes OS Users Mailing List wrote: >>> Andrew David Wong: >>>> On 5/12/23 4:31 AM, 'taran1s' via qubes-users wrote: >>>>> If anon-whoni

Re: [qubes-users] Best practice VPN in Qubes

On 5/12/23 4:31 AM, 'taran1s' via qubes-users wrote: > If anon-whonix AppVM is set to use mullvad-VPN that is connected to > sys-whonix it doesn't connect to internet. If one uses Debian or Fedora based > AppVM and runs vanilla Firefox, it works like a breeze. > > Any ideas how to solve this? >

Re: [qubes-users] Re: QSB-089: Qrexec: Memory corruption in service request handling

On 5/11/23 11:00 PM, Vít Šesták wrote: > If the process is not reused, just an update without restarting anything is > enough, isn't it? (This wouldn't be the case if the process was forking > from a zygote.) Marek has previously told me that only Xen and Kernel updates require a reboot. FWIW,

[qubes-users] Fedora 36 reaches EOL on 2023-05-16

Dear Qubes Community, The Fedora Project has [announced](https://lists.fedoraproject.org/archives/list/annou...@lists.fedoraproject.org/thread/4GXBZJSGQ2PEKIBM2APCTLXBS6IDKSOP/) that Fedora 36 will reach EOL ([end-of-life](https://fedoraproject.org/wiki/End_of_life)) on 2023-05-16. We

[qubes-users] QSB-089: Qrexec: Memory corruption in service request handling

09C093C: public key "HW42 (Qubes Signing Key)" imported gpg: key DA0434BC706E1FCF: public key "Simon Gaiser (Qubes OS signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David

Re: [qubes-users] Colourful prompt

On 5/3/23 4:02 AM, Qubes wrote: > I have noticed on Fedora, the cli prompt itself is not colourful although the > rest of the output is. Is there a way to get the prompt itself in colour as > well? The prompt on Debian is in colour, it makes it easier to find things > when the prompt is in

Re: [qubes-users] The NovaCustom NV41 Series laptop is Qubes-certified!

On 5/3/23 8:30 AM, Leo28C wrote: > On Wed, May 3, 2023 at 5:12 AM Andrew David Wong wrote: > >> nor can we control whether physical hardware is modified (whether >> maliciously or otherwise) *en route* to the user. >> > > Actually you could: > > 1)

[qubes-users] The NovaCustom NV41 Series laptop is Qubes-certified!

Dear Qubes Community, It is our pleasure to announce that the [NovaCustom NV41 Series](https://configurelaptop.eu/nv41-series/) laptop has become the fifth [Qubes-certified computer](https://www.qubes-os.org/doc/certified-hardware/) for Qubes 4.X! ## About the NovaCustom NV41 Series The

[qubes-users] XSAs released on 2023-04-25

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is not affected*. Therefore, *no user action is required*. ## XSAs that DO affect the security of Qubes OS The

Re: [qubes-users] networking in minimal-qube ??

On 4/24/23 11:25 PM, haaber wrote: > I grabbed a debian-11-minimal, updated it & installed thunderbird into > it to have a mail-reading template. > > It worked for some hours, but now it lost network access in its AppVM's. > When I restart the same appvm with debian-11 network is back.  Do I miss

Re: [qubes-users] Odd behavior wile running two separate Whonix gateways

On 3/23/23 9:23 PM, tiesta_symonne61 via qubes-users wrote: > I'm pretty > sure the actual traffic is being routed through the correct gateways, but > my only metric for knowing that is looking at CPU usage while stressing > the connection and making sure the correct chain of net vm's light up. >

[qubes-users] QSB-088: Two Xen issues affecting PV (stub-)domains (XSA-428, XSA-429)

bes OS signing key)" imported gpg: key 8CE137352A019A17: 2 signatures not checked due to missing keys gpg: key 8CE137352A019A17: public key "Andrew David Wong (Qubes Documentation Signing Key)" imported gpg: key AAA743B42FBC07A9: public key "Brennan Novak (Qubes Website &am

[qubes-users] Marek Marczykowski-Górecki to be interviewed at Dasharo virtual event

Dear Qubes Community, Our project lead, [Marek Marczykowski-Górecki](https://www.qubes-os.org/team/#marek-marczykowski-górecki) will be interviewed tomorrow during the [Dasharo Developers vPub](https://vpub.dasharo.com/e/1/dasharo-user-group-1). This is a virtual event hosted by the

[qubes-users] The Dasharo FidelisGuard Z690 is the first Qubes-certified desktop computer!

Dear Qubes Community, It is our pleasure to announce that the [Dasharo FidelisGuard Z690](https://3mdeb.com/shop/open-source-hardware/dasharo-fidelisguard-z690-qubes-os-certified/) has become the fourth [Qubes-certified computer](https://www.qubes-os.org/doc/certified-hardware/) for Qubes 4.X

[qubes-users] Qubes OS 4.1.2 has been released!

Dear Qubes Community, We're pleased to announce the stable release of Qubes 4.1.2! This release aims to consolidate all the security patches, bug fixes, and upstream template OS upgrades that have occurred since the initial Qubes 4.1.0 release. Our goal is to provide a secure and convenient

Re: [qubes-users] Qubes Canary 034

On 3/3/23 1:33 AM, Cristian Margine wrote: > Hello, > You sent the wrong canary. text(it is the text from 033) The current canary > is not signed on December 04. 2022. > > > Cristian > Fixed, thank you. -- You received this message because you are subscribed to the Google Groups

[qubes-users] Re: [CORRECTED] Qubes Canary 034

Dear Qubes Community, *Editor's note*: An earlier version of this announcement mistakenly contained the text of an older canary. This has been corrected below. As always, we encourage readers to verify the cryptographic signatures on canaries, which can always be found in the [Qubes security

[qubes-users] Qubes Canary 034

Dear Qubes Community, We have published a new [Qubes canary](https://www.qubes-os.org/security/canary/). The text of this canary is reproduced below. This canary and its accompanying cryptographic signatures will always be available in the [Qubes security pack

Re: [qubes-users] HCL - Yoga 7 16IAP7

On 2/23/23 7:05 AM, disp...@proslo.dev wrote: > Empty Message > Hi there, It looks like you sent an empty message with no body text and no attachments. Did you mean to add your HCL report to this email? -- You received this message because you are subscribed to the Google Groups

[qubes-users] XSAs released on 2023-02-14

Dear Qubes Community, The [Xen Project](https://xenproject.org/) has released one or more [Xen security advisories (XSAs)](https://xenbits.xen.org/xsa/). The security of Qubes OS *is not affected*. Therefore, *no user action is required*. ## XSAs that DO affect the security of Qubes OS The

[qubes-users] Qubes OS 4.1.2-rc1 has been released!

Dear Qubes Community, We're pleased to announce the first [release candidate](#what-is-a-release-candidate) for Qubes 4.1.2! This [patch release](#what-is-a-patch-release) aims to consolidate all the security patches, bug fixes, and upstream template OS upgrades that have occurred since prior

Re: [qubes-users] Passing a YubiKey to a VM?

On 2/7/23 12:24 PM, Ulrich Windl wrote: > How do you use a YubiKey (OpenPGP card, etc.) in Qubes OS? In case you (or anyone else reading this) has not already seen it, there is a documentation page on this: https://www.qubes-os.org/doc/yubikey/ -- You received this message because you are

Re: [qubes-users] network in template (Qubes 4.1)

On 2/1/23 12:54 PM, davaiigoo wrote: > According to the documentation, there is way to enable networking in Qubes > templates for sources other than updates from apt-get or dnf . > > https://www.qubes-os.org/doc/how-to-install-software/#installing-software-from-other-sources > > Tried different

  1   2   3   4   5   6   7   8   9   10   >