[qubes-users] Cuckoo Sandbox

2017-02-16 Thread '0xDEADBEEF00' via qubes-users
Hi every body,

Does some of you already investigate the integration of a cuckoo sandbox with 
qubes for malware analysis?

Best regards,

0xdeadbeef00



Sent with [ProtonMail](https://protonmail.com) Secure Email.

-- 
You received this message because you are subscribed to the Google Groups 
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to qubes-users+unsubscr...@googlegroups.com.
To post to this group, send email to qubes-users@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/qubes-users/7wgrRs9rTcPeQvguful-Q_KSZPbLGWIyijgwOWsFEaTfNOWTWnexaAqve3VOMWDv20Z0lowAt0HEFJ68jvg4a4cLyiAgqIGalQ3kHhllr8k%3D%40protonmail.com.
For more options, visit https://groups.google.com/d/optout.


Re: [qubes-users] Install Qubes on external SSD? Photo edition tools?

2017-02-13 Thread '0xDEADBEEF00' via qubes-users
Hi,

I use digiKam, Darktable and Gimp in my photo workflow on qubes without any 
problem. They are all available both in the fedora-23 and debian-8 templates.

Have a nice day,

0xdeadbeef00



Sent with [ProtonMail](https://protonmail.com) Secure Email.


 Original Message 
Subject: [qubes-users] Install Qubes on external SSD? Photo edition tools?
Local Time: February 12, 2017 6:09 PM
UTC Time: February 12, 2017 5:09 PM
From: ingrid.mary.vie...@gmail.com
To: qubes-users 

Hi,
I'm currently using Windows and considering changing OS.
I would like to try Qubes, but first on an external device, while keeping 
Windows on my hard drive.
1. Can I install Qubes on an external SSD or should I try Live USB instead?
2. Are there advanced photo edition tools for Qubes? For example, Darktable?
Thanks a lot!!!

--
You received this message because you are subscribed to the Google Groups 
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to qubes-users+unsubscr...@googlegroups.com.
To post to this group, send email to qubes-users@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/qubes-users/8cf3994b-ffdb-4b3b-8dcb-f55189707d16%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

-- 
You received this message because you are subscribed to the Google Groups 
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to qubes-users+unsubscr...@googlegroups.com.
To post to this group, send email to qubes-users@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/qubes-users/nSTCfU0loA5It_rA07waHRcUNCaYlsJTxTGbNCJf9VX3Aeqa-tcwi6vDL-FI8tiJSf8dSJ8kni9z2DT9tMG3NOQQPN4aBGx90guYzWMDxTc%3D%40protonmail.com.
For more options, visit https://groups.google.com/d/optout.


Re: [qubes-users] Re: traveling - best practice

2017-02-10 Thread '0xDEADBEEF00' via qubes-users
Interesting topic...

I would like to here more about how people handle this.

On my side, I'would never work on sensitive information in such a situation.
To make just some surfing in public place, my laptop is installed with a 
standard w10 that I use only to check a generic mailbox with on sensitive 
information, do some nonsensitive work and surf. By the way, the boot sequence 
of my laptop is set to boot this partition by default with no menu or prompt of 
any kind. If I want to boot into qubes, I have to do it manually by interupting 
the boot sequence.
This also serves as a decoy, if I'm forced to boot my laptop when passing 
borders or so.

Best,

0xdeadbeef



Sent with [ProtonMail](https://protonmail.com) Secure Email.


 Original Message 
Subject: [qubes-users] Re: traveling - best practice
Local Time: February 8, 2017 8:30 AM
UTC Time: February 8, 2017 7:30 AM
From: pixelfa...@gmail.com
To: qubes-users 

On Tuesday, February 7, 2017 at 5:09:45 AM UTC-8, haaber wrote:
> Hello, I wonder how you behave when traveling, for example in places
> with cameras all around. I feel uncomfortable to enter my passwords in
> such situations. Of course I can simply not turn my computer on. But

most "security" cameras cant see much. but the cloud of cell phones
and any cameras worn by those looking to do this will have little trouble
seeing and hearing your passphrases.

you could use a yubikey to type your passphrase in, though be careful of
pick pockets.

you could also velcro some cloth around the lid like this, 
https://goo.gl/photos/py8qdxRPtoz3PGL19

if you do, make sure theres some going around the front too. then use it with 
your back to two corners.

someone could still pick up your typing with a good directional mic, but then
you have a different threat model.

in this case, you could have your laptop unlocked and suspended, with a
qrexec service to shut it down should it leave, for example, the vicinity of 
your cell phone or NFC implant.

> sometimes you have several hours in an airport .. I thought about 3
> options.
>
> 0) Change all (disk / user) pwd before & after traveling (how do I
> change the disk pwd?).

everything you ever wanted to know about luks, 
https://gitlab.com/cryptsetup/cryptsetup

> 1) Pull out my tails usbkey and surf with that?

yes. or, better yet, tails on a dummy netbook or chromebook.

>
> 2) maybe it woud be nice to have an additional "single cube"
> usr/password : when using this user name, one would get a single
> disposable untrusted VM, no dom0 acces, no USB, and so forth. Is that
> feasable / reasonable?

this goes back some earlier discussions. easiest way is to dual boot
your laptop.

>
> how do you cope with that? Thank you, Bernhard

leave it off, walk around, see the local art. sample the chocolate and coffee.
try not to work.

--
You received this message because you are subscribed to the Google Groups 
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to qubes-users+unsubscr...@googlegroups.com.
To post to this group, send email to qubes-users@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/qubes-users/1f778e42-ae04-4d12-ac5e-ae60e41c675f%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

-- 
You received this message because you are subscribed to the Google Groups 
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to qubes-users+unsubscr...@googlegroups.com.
To post to this group, send email to qubes-users@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/qubes-users/YHFVL6WipjnpOts4b64UoOrUkpRc0SYcbw3lWtKI845ETwRKbogKqMyt8ebXPi3k36ixukLPPEpvmaeNk7C_O4PrAGXa_4Z2jKK3GTzzK5I%3D%40protonmail.com.
For more options, visit https://groups.google.com/d/optout.


Re: [qubes-users] I have a bank vm, how do you restrict

2017-02-07 Thread '0xDEADBEEF00' via qubes-users
Hi,
It's my first contribution on this list.

I've tried both solution some time ago and definitly the tinyproxy solution 
works much better and can handle nicely dns round robin or servers behind load 
balancers. By the way this solution offer an other nice possibility, you can 
use regular expressions and for example allow .*\.mycompany\.com$ on the 
conter-part, you will have to trust the dns resolution.

Best,

0xdeadbeef



Sent with [ProtonMail](https://protonmail.com) Secure Email.


 Original Message 
Subject: [qubes-users] I have a bank vm, how do you restrict
Local Time: February 7, 2017 9:11 AM
UTC Time: February 7, 2017 8:11 AM
From: elsiebuck...@gmail.com
To: qubes-users 

I have a bank vm, how do you restrict the browser from being able to go else 
where? Do you add the iprules in the vm or do you create a proxyvm and add the 
iprules there?

I've tried both, and created an email vm with iprules "deny everything except"

But then neither vm(s) will connect.

Is there a proper way to do this?

Or will I have to do the tinyproxy thing I've read elsewhere ?

--
You received this message because you are subscribed to the Google Groups 
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to qubes-users+unsubscr...@googlegroups.com.
To post to this group, send email to qubes-users@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/qubes-users/d3a620c9-2fce-45c5-95f9-78a988990849%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

-- 
You received this message because you are subscribed to the Google Groups 
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to qubes-users+unsubscr...@googlegroups.com.
To post to this group, send email to qubes-users@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/qubes-users/i6YOc4MifJ229V8fukuyAnh2WW1cydMAS7dzUA_0L_HhWziUzxCQE-c6rvq7Te117JTKKs-FCSgBkHeTob8KwAH9JHh0z-66GiI6Ii72J6g%3D%40protonmail.com.
For more options, visit https://groups.google.com/d/optout.