[qubes-users] Installation security : Usb optical vs sata optical vs usb drive

2018-01-01 Thread mmm648
So from the installation security guide I read the following: "Use a USB optical drive. Attach a SATA optical drive to a secondary SATA controller, then assign this secondary SATA controller to an AppVM." And for USB Drive: "Untrustworthy firmware. (Firmware can be malicious even if the drive is

Re: [qubes-users] Password security/disposable vm security

2017-12-26 Thread mmm648
Kk, thanks for all the information as long as that AppVM thing is true I'm happy enough. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to

Re: [qubes-users] Password security/disposable vm security

2017-12-25 Thread mmm648
"The protection you want is against the evil software leaking the password. A disposable VM would not help in this case as you enter the password, or you let it remember your site passwords, then it would just send it out t the evil website immediately. " Looks like the post got double posted

Re: [qubes-users] Password security/disposable vm security

2017-12-24 Thread mmm648
Okay so I read all of that lol, and I understood it all but what if there was an e-mail client that used the browser method? You get logged in to all your emails without retrieving anything then switch to cookie authentication and forget the password, that way when the zero-day happens you only

[qubes-users] Password security/disposable vm security

2017-12-23 Thread mmm648
So I was reading one of the guides and I came across this: "there is absolutely no point in not allowing e.g. Thunderbird to remember the password – if it got compromised it would just steal it the next time I manually enter it" So this was written 6 years ago but it's the latest one I think.

[qubes-users] Password security/disposable vm security

2017-12-23 Thread mmm648
So I was reading one of the guides and I came across this: "there is absolutely no point in not allowing e.g. Thunderbird to remember the password – if it got compromised it would just steal it the next time I manually enter it" So this was written 6 years ago but it's the latest one I think.