e mirrors etc), that assuming
none of it can be compromised is unrealistic. On the other hand, even
compromised mirror can't do anything about properly signed package
(besides hiding its existence).
Updates proxy is only to prevent user mistakes - like browsing the web
directly from the templa
get it recognized as a keyboard + mouse?
Take a look here:
https://www.qubes-os.org/doc/usb/#tocAnchor-1-1-4
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-B
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Sat, Aug 13, 2016 at 06:53:20AM -0700, zackp...@gmail.com wrote:
> On Saturday, August 13, 2016 at 6:14:44 AM UTC-4, Marek Marczykowski-Górecki
> wrote:
> > -BEGIN PGP SIGNED MESSAGE-
> > Hash: SHA256
> >
> &
tes - in case of template-based VM,
those will be updates for its template.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGNATURE-
Ve
] Error 1
> > Makefile:188: recipe for target 'vmm-xen.get-sources-extra' failed
> > make: *** [vmm-xen.get-sources-extra] Error 2
>
>
> Hi, again. Here is full log. "Step 9" meaning install 'make qubes-vm'
> command :)
>
> [root@
n new release.
Unless Windows create the other file ("WPSettings.dat")...
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGNATURE-
Versi
and which is preferable depends on things
> like the modifications (if any) you've made to your template(s) and how
> acceptable you find the results of the in-place upgrade procedure for your
> individual purposes.
I'm not sure if I understand the intention here, bu
m it has just under 200M in RES column, but you probably have
even less).
Also check swap usage in VMs - maybe its about some VM, not dom0?
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-
gt;
> If you're logged into GitHub, there should be a "reopen" button (not sure if
> visibility is permissions-based). You should probably test the patch that is
> supposed to fix the issue before reopening it, though. The patch should be
> available for testing soon.
The updated
ial exceptions I need to
> >>>>>>>> add to the sys-firewall vm?
> >>>>>>>>
> >>>>>
> >>>>> Are you downloading updates via Tor (sys-whonix)? If so,
> >>>>> try requesting a new identity (press
maintain later.
[1] https://www.qubes-os.org/doc/managing-vm-kernel/#tocAnchor-1-1-3
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Thu, Aug 18, 2016 at 08:25:34AM -0700, Adrian Rocha wrote:
> El viernes, 12 de agosto de 2016, 2:34:52 (UTC-6), Marek Marczykowski-Górecki
> escribió:
> > -BEGIN PGP SIGNED MESSAGE-
> > Hash: SHA256
> >
> >
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Thu, Aug 18, 2016 at 09:12:35AM -0700, Adrian Rocha wrote:
> El jueves, 18 de agosto de 2016, 9:45:44 (UTC-6), Marek Marczykowski-Górecki
> escribió:
> > -BEGIN PGP SIGNED MESSAGE-
> > Hash: SHA256
> >
> >
ere
> to find it. Googling hasn't helped me so far, and I'd really appreciate
> any help you all could provide.
>
> Thanks so much for all your work!! Looking forward to getting Qubes going.
One of easiest way is `df /boot/efi` command - you'll see something like
/dev/sda1 at
ly to Disposable VM (DispVM in short), which
by design should start from clean state.
> If I'm very careful about the permissions, I should be able to keep any
> risk under control. The qrexec design looks pretty flexible.
>
> Thanks!
>
- --
Best Regards,
Marek Marczy
; the moment where installer says "installing bootloader". Every time!
>
> If anyone have some solution to this, please share!
UEFI or legacy mode? In any case, try the other one.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Sun, Aug 14, 2016 at 06:14:12PM -0700, zackp...@gmail.com wrote:
> On Saturday, August 13, 2016 at 5:45:58 PM UTC-4, Marek Marczykowski-Górecki
> wrote:
> > -BEGIN PGP SIGNED MESSAGE-
> > Hash: SHA256
> >
> &
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Thu, Aug 18, 2016 at 10:34:55AM -0700, Adrian Rocha wrote:
> El jueves, 18 de agosto de 2016, 10:50:14 (UTC-6), Marek Marczykowski-Górecki
> escribió:
> > -BEGIN PGP SIGNED MESSAGE-
> > Hash: SHA256
> >
> >
it in
the template (by default fedora-23), or apply the modification from
/rw/config/rc.local in particular VM (sys-net). If you choose to use
rc.local, make it executable.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people nor
ives information
that you use Qubes OS. And if one can read that MAC address, can also
read a dozen other indicators that you use Qubes OS - like running on
Xen, or /var/lib/qubes directory presence, or simply a hostname
("dispXX").
- --
Best Regards,
Marek Marczykowski-Górecki
Inv
ited - by available RAM.
Further attempts will simply fail.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGNATURE-
Version:
ade and it wouldn't even boot off USB.
> >
> > So I pulled the drive, put it in another laptop (Samsung ATIV book 9 plus)
> > and 3.2 installed and worked. I updated everything, put the drive back in
> > the x260 and boot borked.
>
> Adding:
> mapbs=1
> no
ings - almost all Xfce configuration is in XML files...
>
> The best would be augeas.change state which uses augeas which can make
> modifying structured data type files a one line thing.
Thanks, will take a look at it!
> It would be perfect for this but has some dependen
uishable from other Dell
devices.
If device lack of textual information about the device, you always see
numeric representation, which you can correlate with lsusb output. You
can easily get it in dom0 using: qvm-run -p sys-usb lsusb.
If you have a better idea for device description, please share
proposi
VMs are not connecting to anything
> outside Qubes anymore. the only VM that was connecting was sys-firewall.
> The next time it happens I will write down what exactly I am
> experiencing and if the connection between the VMs are working properly.
Wasn't that after starting some AppVM by a c
you have no other VMs running, it will not
use free memory. This is mostly requirement to handle PCI devices, which
require continuous memory region. But you can increase this assignment
in sys-usb settings.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it m
re dialog (or add
- --ignore-missing if you're using command line tool).
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGNATURE-
Ve
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Mon, Aug 29, 2016 at 11:07:33PM -0700, nekroze.law...@gmail.com wrote:
> On Tuesday, August 30, 2016 at 12:20:32 PM UTC+10, Marek Marczykowski-Górecki
> wrote:
> > > > > fedora-23-minimal templates are unmanageable
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Tue, Aug 30, 2016 at 11:00:30PM +0200, Marek Marczykowski-Górecki wrote:
> On Mon, Aug 29, 2016 at 11:07:33PM -0700, nekroze.law...@gmail.com wrote:
> > Also, I am not sure when, but the pkg.uptodate state does nothing in
> > te
.
For older releases check above page for upgrade instructions.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGNATURE-
Version: GnuPG v2
tions.
>
> Congrats on another milestone.
>
> For those of us tracking testing, we're automatically swept along with our
> updates (just as users of rc1/rc2), correct?
If you're using 3.1 or older (with testing repos enabled or not), you
need to go through upgrade procedure
e such as tinyproxy requires?
Take a look at grains - there is a standard `ipv4` available.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGNATURE
vulnerable for bug in USB stack itself, but the attack surface is much,
much smaller than all the USB devices drivers (some unmanaged for
years).
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-po
reject any non-keyboard device
> > before allowing any driver to talk to it. This will still left you
> > vulnerable for bug in USB stack itself, but the attack surface is much,
> > much smaller than all the USB devices drivers (some unmanaged for
> > years).
>
> Ver
elcome.
Check to what command those .desktop files points - should have
something like Exec=qvm-run Try to call that exact command manually
and see if you'll get some error. If not (but still application do not
launch), add "-p" option to get more details.
- --
Best Regards,
M
e before 2016-09-09" really recommending the 3.2 release
> candidate?
Unless some major bug will be found in R3.2-rc3 (which is unlikely), the
final R3.2 will be exactly the same as R3.2-rc3. So, yes - upgrading to
R3.2-rc3 seems as a reasonable step.
- --
Best Regards,
Marek Marczykowski-
art is connecting those two together.
As for passing through the whole USB controller, it is broken currently:
https://github.com/QubesOS/qubes-issues/issues/1659
We'll work on this some more this month and hopefully fix it.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Be
n
mixer app - middle-click on mixer applet is enough.
I think it may not be Qubes specific bug at all, but haven't looked if
upstream report for it exists.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read tex
r configuration to load Linux directly, excluding Xen.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGNATURE-
Version: GnuPG v2
iQEcBAEBCAA
there should be README.txt.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGNATURE-
Version: GnuPG v2
iQEcBAEBCAAGBQJXzThEAAoJENuP0xzK19csNH
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Mon, Sep 05, 2016 at 11:26:03AM +0200, Achim Patzner wrote:
> Am 05.09.2016 um 11:17 schrieb Marek Marczykowski-Górecki:
> > On Mon, Sep 05, 2016 at 10:31:17AM +0200, Achim Patzner wrote:
> > > Is there any documentation
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Mon, Sep 05, 2016 at 02:57:13AM -0700, Bob Newell wrote:
> On Sunday, September 4, 2016 at 2:45:03 PM UTC-4, Marek Marczykowski-Górecki
> wrote:
> > -BEGIN PGP SIGNED MESSAGE-
> > Hash: SHA256
> >
> > On S
lse than logged in user. You can
also try changing $USER and/or $LOGNAME environment variables.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGN
iet
> /usr/local/bin/yubikey-auth 04c21478245c36861b9f946e0d9388d5ebbb909d
> d0be2dc421be4fcd0172e5afceea3970e2f3d940
Do you have anything in logs in dom0 (check `sudo journalctl -eb`)?
Do you have ykchalresp installed in template of sys-usb? It's part of
ykpers package.
- --
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Thu, Jun 23, 2016 at 09:31:46PM +0200, Niels Kobschaetzki wrote:
> On 16/06/23 00:28, Marek Marczykowski-Górecki wrote:
> > On Wed, Jun 22, 2016 at 11:41:12AM +0200, Niels Kobschätzki wrote:
> > > Hi,
> > >
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Tue, Sep 06, 2016 at 12:24:54AM -0700, Foppe de Haan wrote:
> On Tuesday, September 6, 2016 at 1:24:09 AM UTC+2, Marek Marczykowski-Górecki
> wrote:
> > -BEGIN PGP SIGNED MESSAGE-
> > Hash: SHA256
> >
> >
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Tue, Sep 06, 2016 at 08:27:09AM +0200, Achim Patzner wrote:
> Am 06.09.2016 um 01:24 schrieb Marek Marczykowski-Górecki:
> > I've just tried this and successfully upgraded Fedora 23 to Fedora 24
> > template.
> >
>
know if that's all what is required.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGNATURE-
Version: GnuPG v2
iQEcBAEBCAAGBQJXzp+GAAo
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Tue, Sep 06, 2016 at 01:07:49PM +0200, Achim Patzner wrote:
> Am 06.09.2016 um 11:30 schrieb Marek Marczykowski-Górecki:
> > There are no fc24 packages for R3.1. So if you're starting with R3.1
> > template, first you need t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Tue, Sep 06, 2016 at 01:10:51PM +0200, Achim Patzner wrote:
> Am 06.09.2016 um 11:17 schrieb Marek Marczykowski-Górecki:
> > Just some standard usage things, like:
> > - networking (like standard web browsing)
>
> Worki
part missing (in addition to my previous email): network backend driver.
Without this, it is impossible to have ProxyVM.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thin
ug in upgrade instruction).
Also qubes-mgmt-salt-vm-connector package is needed in default template
to manage in-VM configuration.
> * Command `yum list` never shows 3.0.* for Qubes packages, with few
> exceptions for templates and Windows tools.
>
> It this result correct?
Bes
chainloader /EFI/BOOT/xen.efi
boot
Take a look at grub configuration on installation image
(/EFI/BOOT/grub2.cfg).
Also take a look here for troubleshooting UEFI related problems:
https://www.qubes-os.org/doc/uefi-troubleshooting/
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A:
otmgr. Some hints here:
https://www.qubes-os.org/doc/uefi-troubleshooting/
(especially step 8 have a line to add boot entry).
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a b
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Tue, Sep 06, 2016 at 12:34:49PM -0700, Peter Ihasz wrote:
> 2016. szeptember 6., kedd 18:39:58 UTC+1 időpontban Peter Ihasz a következőt
> írta:
> > 2016. szeptember 5., hétfő 21:09:33 UTC+1 időpontban Marek
> > Marc
t; ^^
>
> I would like to re-install grub on /dev/sda but in dom0 , there is no grub
> binaries
> I also have to see how I can install / update the system
Yes, in EFI mode grub is not used in installed system at all. But if you
want, you can install it with "qubes-dom0-update
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Tue, Sep 06, 2016 at 08:44:35PM -0700, pixel fairy wrote:
> > On 09/05/2016 08:24 PM, Marek Marczykowski-Górecki wrote:
> > > Please, if any of you have a chance, test such template.
>
> Whats the time frame on 3.2? fedora
switch in BIOS to legacy mode only).
And please, do not top post!
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGNATURE-
Version: GnuPG v2
.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGNATURE-
Version: GnuPG v2
iQEcBAEBCAAGBQJX0VS0AAoJENuP0xzK19csgkcH/R0z5UXeQ6agHKWmUNNuSCVe
ct R3.1 to get any new
> >> features but if QWT3.2 is improving stability, it'd be great to
> >> get it if possible.
> >
> >
> > That's a good question. I can confirm what you're seeing (in terms
> > of what's available in the Qubes repos),
> it.
In fact those modules (besides USBIP) should be blacklisted by default.
Take a look at /etc/qubes-suspend-module-blacklist. Maybe it doesn't
work for some reason? Or the file wasn't updated (and the new on is in
.rpmnew)?
- --
Best Regards,
Marek Marczykowski-Górecki
Invisi
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Sun, Sep 11, 2016 at 12:41:31PM -0700, Vít Šesták wrote:
> On Sunday, September 11, 2016 at 8:52:36 PM UTC+2, Marek Marczykowski-Górecki
> wrote:
> > In fact those modules (besides USBIP) should be blacklisted by default.
> > T
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Sun, Sep 11, 2016 at 01:12:12PM -0700, Vít Šesták wrote:
> On Sunday, September 11, 2016 at 9:54:42 PM UTC+2, Marek Marczykowski-Górecki
> wrote:
> > AFAIR only *_pci modules are talking to the hardware, so removing them
> >
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Sun, Sep 11, 2016 at 02:00:15PM -0700, Vít Šesták wrote:
> On Sunday, September 11, 2016 at 10:15:52 PM UTC+2, Marek
> Marczykowski-Górecki wrote:
> > > However, after renaming the /rw/config/suspend-module-blacklist,
> >
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Sun, Sep 11, 2016 at 02:25:29PM -0700, Vít Šesták wrote:
> On Sunday, September 11, 2016 at 11:13:51 PM UTC+2, Marek
> Marczykowski-Górecki wrote:
> > Interesting. Any errors in journalctl?
>
> Nothing interesting found there.
s
version preinstalled by Purism, it should be there, but if you have
installed it yourself, you need to update the dom0 kernel. Applying
updates normally (`sudo qubes-dom0-update`) should be enough.
You need version 4.1.24-10 or later.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Th
that copy command with an "if [-f"
Can you check if that icon is really missing, or rather it is there, but
as a broken symlink?
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q:
practice some more.
As for upgrade - currently we don't plan to support in-place upgrade
from 3.x to 4.0. But as usual, it will be possible to migrate using
backup & restore.
[1] https://www.qubes-os.org/doc/version-scheme/#tocAnchor-1-1-3
- --
Best Regards,
Marek Marczykowski-Górecki
Invis
ibs package: Fedora 23 have 4.5, but
Qubes 3.1/3.2 use 4.6. And all the Qubes related packages are linked
with 4.6, while Fedora ones with 4.5.
Try upgrading to Fedora 24, which uses Xen 4.6.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in wh
(for example Disposable VMs most likely
will not).
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGNATURE-
Version: GnuPG
-hotplug.conf
Section "Device"
Identifier "intel"
Driver "intel"
Option "HotPlug" "false"
EndSection
It helps somehow, but still will detect that external display gets
disconnected when explicitly asked (`xrandr`). With all its
consequenc
> Thanks,
> >
> >
> > Ludwig
>
> I want to clarify: with VT-d disabled, the machine behaves and runs, but it
> is
> impossible to assign pci devices to VMs, because this is what VT-d is for.
> With VT-d enabled, it chrashes after loading initrd.img
Remove also &q
n by "EFI won't boot"? Does it crash/hang during startup,
or isn't detected at all? Take a look here:
https://www.qubes-os.org/doc/uefi-troubleshooting/
Also take a look at those threads:
https://groups.google.com/forum/#!topic/qubes-users/8Ui1csb2S9Q
https://groups.google.com/d/to
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Tue, Sep 13, 2016 at 10:19:32AM +0200, Zrubi wrote:
> On 09/13/2016 10:02 AM, Marek Marczykowski-Górecki wrote:
>
> >> * panel are not sticked to my internal (primary) display. Both
> >> KDE and XFCE behaving this way. M
ort, but it require some
additional hardware.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGNATURE-
Version: GnuPG v2
iQEcBAEBCAAGBQJX
s free to modify any network payload,
> which is powerful as well; but short of that, can it actually compromise a
> system or a VM?)
>
> JJ
>
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people norma
se Qubes.
>
> VT-d can do memory insulation, and should assign a memory range (pci-address
> space of a pci device) exclusively to one VM, so the attacker of that hw can
> do DMA into that VM, if done properly.
> But there is that evil ME in the Northbridge. How does the ME-proc
reated by starting the fedora-23 template VM and then
> running in a dom0 terminal: qvm-sync-appmenus fedora-23
>
> 7. You should now be able to go back to the GUI and from the Q menu: Q ->
> Domain: Signal -> Signal: Add more shortcuts...
> In the window that will appear, y
se security[1], not a technical
requirement of some software component. But this decision means that
Qubes-specific component will no longer support non-compatible systems.
[1]
https://www.qubes-os.org/news/2016/07/21/new-hw-certification-for-q4/
- --
Best Regards,
Marek Marczykowski-Górecki
Invisi
n/QSBs/qsb-100-2024.txt>
## [Marek
Marczykowski-Górecki](https://www.qubes-os.org/team/#marek-marczykowski-górecki)'s
PGP signature
```
- -BEGIN PGP SIGNATURE-
iQIzBAABCAAdFiEELRdx/k12ftx2sIn61lWk8hgw4GoFAmW5Di0ACgkQ1lWk8hgw
4GphzQ//Ta+g8Y7Cjmx0w+byISlTHoxao
" example
> in https://qubes-os.org/support/ but it was rejected. Quite confusing.
You must subscribe to qubes-devel mailing list to post there.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
-BEGIN PGP SIGNATURE-
iQEzBAEBCAAdFiEEhrpukzGPukRmQqkK24/THMrX1ywF
o make automatic. If anybody has some
idea, patches welcome.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
-BEGIN PGP SIGNATURE-
iQEzBAEBCAAdFiEEhrpukzGPukRmQqkK24/THMrX1ywFAmXo5NcACgkQ24/THMrX
1yys0Qf6AmYB8Z7OIahL8zabnZ+RZkGc+YmJNcAnxeayFDBBkbOXjuNqKUSvCJ8w
1sKGOi
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Wed, Mar 06, 2024 at 06:16:03PM -0500, Demi Marie Obenour wrote:
> On Wed, Mar 06, 2024 at 10:49:11PM +0100, Marek Marczykowski-Górecki wrote:
> > On Wed, Mar 06, 2024 at 06:13:50PM +0100, Ulrich Windl wrote:
> > > Haven'
sue and
> I'll look into it.
I haven't looked into details nor tried it yet, but on the first sight
looks really cool!
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: W
have the other part finished this week.
In the meantime, you can try some naive methods of slowing down the
extraction process, for example by attaching strace to it (`strace -p
$(pidof qfile-dom0-unpacker)`), or pausing it from time to time by
sending SIGSTOP signal (and then SIGCONT
ise-recovery/
[3] https://www.qubes-os.org/doc/backup-restore/
[4] https://www.qubes-os.org/doc/backup-emergency-restore-v4/
[5] https://www.qubes-os.org/doc/backup-emergency-restore-v3/
[6] https://www.qubes-os.org/doc/backup-emergency-restore-v2/
- --
The Qubes Security Team
https://www.qubes-os
> Fedora 29).
>
> Should I just switch or rather not touch it?
Yes, it's ok to and even desirable to switch. It should be based on
stock template without less trusted repositories and software installed.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because i
.xen.org/xsa/advisory-299.html
[2] https://xenbits.xen.org/xsa/advisory-302.html
- --
The Qubes Security Team
https://www.qubes-os.org/security/
```
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people norm
es-issues/issues/4855
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGNATURE-
iQEzBAEBCAAdFiEEhrpukzGPukRmQqkK24/THMrX1ywFAl3PEHUACgkQ2
en.org/xsa/advisory-310.html
[2] https://xenbits.xen.org/xsa/advisory-311.html
- --
The Qubes Security Team
https://www.qubes-os.org/security/
```
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is t
s-os.org/doc/firewall/#enabling-networking-between-two-qubes
[2] https://nvd.nist.gov/vuln/detail/CVE-2019-14899
- --
The Qubes Security Team
https://www.qubes-os.org/security/
```
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people no
safe
to continue using it.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGNATURE-
iQEzBAEBCAAdFiEEhrpukzGPukRmQqkK24/THMrX1ywFAl4X0IEACgkQ24/THMrX
finding
what exactly is changing (and preferably also why). And only then find
how to mitigate this issue. If specific flags would turn out to be not
related to security features or otherwise having unwanted effects, then
ignoring those changes would be an option. But ignoring _only those
flags verified t
is AMD-only,
> apparently. Unclear to me if the other items 1.2.35 and higher, which is
> for "x86" apply only to intel or to all x86 architecture.
I may be missing it in this thread, but have anybody tried Qubes 4.1
builds (with Xen 4.13) on such system? Does it have the same is
support in Thunderbird
out of the box without requiring an addon - meaning probably more people
will use it.
BTW we need to verify is this major breakage of Thunderbird addons won't
break other Qubes features too - namely opening attachments in
DisposableVM, which is also done using an addon.
0) to attack Qubes, as relevant interfaces are not available
from within a VM.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-B
not boot at all because of issues with
>> attaching ethernet PCI device.
Is it a Realtek card? I don't remember exactly what helped, but
something helped here. Paweł, can you help?
It was either attaching SD card reader (which is another function on the
same PCI device) to the sys-net,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Fri, Mar 20, 2020 at 01:05:02AM +0100, Vít Šesták wrote:
> Hello,
>
> On March 20, 2020 12:33:31 AM GMT+01:00, "Marek Marczykowski-Górecki"
> wrote:
> >I didn't spot VT-d errors, but I'm not entirely sure
ository, and will be uploaded
to current (aka stable) in few days.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-BEGIN PGP SIGNATURE-
iQEzBAEB
On Sat, Mar 28, 2020 at 12:57:55AM +0100, Ulrich Windl wrote:
> On 2020-03-21 20:39, Marek Marczykowski-Górecki wrote:
> ...
> > Sounds like https://github.com/QubesOS/qubes-issues/issues/5705
> > The fix is already in current-testing repository, and will be uploaded
> > to
701 - 800 of 902 matches
Mail list logo
