Re: [qubes-users] build usb-vm and net-vm using openbsd?
On Thursday, 9 November 2017 04:30:23 UTC, Jean-Philippe Ouellet wrote: > On Wed, Nov 8, 2017 at 3:37 PM, ludwig jaffe wrote: > > Hi, I saw that the linux kernel has some flaws > > (http://www.openwall.com/lists/oss-security/2017/11/06/8) in the usb stack, > > so I am > > thinking about security against common errors, I would suggest to use > > OpenBSD as USB-VM. Maybe, as Net-VM one could use open-bsd. > > But how to integrate open-bsd with qubes and the virtual network inside > > qubes? > > > > Has anyone tried such? > > Yes, I looked into this some time last year and plan to return to work > on it one day. I was an OpenBSD person before I came to Qubes. > > Several things need to happen first before any meaningful Qubes > integration can be done though. First would be a vchan driver. > > Don't expect anything soon... unless perhaps you're willing to fund such work? would a specialised unikernel for usb operations make sense for this? -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/be50cbd5-eb24-4fbb-943b-7c0540312a32%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [qubes-users] build usb-vm and net-vm using openbsd?
On Wed, Nov 8, 2017 at 3:37 PM, ludwig jaffe wrote: > Hi, I saw that the linux kernel has some flaws > (http://www.openwall.com/lists/oss-security/2017/11/06/8) in the usb stack, > so I am > thinking about security against common errors, I would suggest to use > OpenBSD as USB-VM. Maybe, as Net-VM one could use open-bsd. > But how to integrate open-bsd with qubes and the virtual network inside qubes? > > Has anyone tried such? Yes, I looked into this some time last year and plan to return to work on it one day. I was an OpenBSD person before I came to Qubes. Several things need to happen first before any meaningful Qubes integration can be done though. First would be a vchan driver. Don't expect anything soon... unless perhaps you're willing to fund such work? -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/CABQWM_D%3DW_mCxAY4Wp_rUt352hSwpMXKiAwEkP72BoEVC0n_iw%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
[qubes-users] build usb-vm and net-vm using openbsd?
Hi, I saw that the linux kernel has some flaws (http://www.openwall.com/lists/oss-security/2017/11/06/8) in the usb stack, so I am thinking about security against common errors, I would suggest to use OpenBSD as USB-VM. Maybe, as Net-VM one could use open-bsd. But how to integrate open-bsd with qubes and the virtual network inside qubes? Has anyone tried such? Cheers Ludwig -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/f3a9d418-1c96-4976-a4f7-9576c669a8f1%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
