On Thursday, 6 August 2020 22:24:38 UTC+8, 54th Parallel wrote:
>
>
> There might be potential attacks against the hypervisor or
> daemons/backends in dom0 that require root access. Qubes founder Joanna
> Rutkowska initially assessed there was limited benefit from isolating the
> root account
On Thursday, 6 August 2020 17:36:05 UTC+8, Chris Laprise wrote:
>
> IIRC she gave some indication that guest VMs shouldn't be defenseless
> internally.
>
> --
> Chris Laprise, tas...@posteo.net
> https://github.com/tasket
> https://twitter.com/ttaskett
> PGP: BEE2 20C5 356E 764A 73EB
On 8/5/20 11:48 PM, fiftyfourthparal...@gmail.com wrote:
On Thursday, 6 August 2020 00:37:08 UTC+8, Qubes wrote:
What risk(s) are you mitigating by disabling passwordless root?
You should look at this the other way around--what do I stand to lose
by keeping passwordless root? If I can
On Thursday, 6 August 2020 00:37:08 UTC+8, Qubes wrote:
>
> What risk(s) are you mitigating by disabling passwordless root?
>
You should look at this the other way around--what do I stand to lose by
keeping passwordless root? If I can take a low-cost step that would
dramatically raise the
On 8/5/20 6:12 PM, fiftyfourthparal...@gmail.com wrote:
On Wednesday, 5 August 2020 02:29:46 UTC+8, 54th Parallel wrote:
Hi all,
Sorry for the recent spam--I've been spending a lot more time with Qubes
and coming across issues that I haven't seen mentioned here yet.
Here's another one:
If
On Wednesday, 5 August 2020 02:29:46 UTC+8, 54th Parallel wrote:
>
> Hi all,
>
> Sorry for the recent spam--I've been spending a lot more time with Qubes
> and coming across issues that I haven't seen mentioned here yet.
>
> Here's another one:
>
> If you disable passwordless root access in
