[qubes-users] Re: Maybe a silly question
On Tuesday, March 21, 2017 at 10:36:23 AM UTC-7, Manuel Cornejo wrote: > > Hi everyone. > > As Qubes works by means of the principle of security by isolation and > every part of the hardware is running in a virtual machine. Does it make > any sense to use Kaspersky Security for virtualization over the xen > hypervisor to improve security and antihacker security? > > Reply: Kaspersky is incorporated in and obeys th elaws of the Russian Federation, which is controlled by the FSB, formerly knowen as the KGB. Man security flaws of record, most recently August 2019 breaking news. https://www.techradar.com/news/kaspersky-antivirus-left-millions-customers-open-to-online-tracking -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/9ab2a218-31e9-4cfe-83b2-78b31eacba7b%40googlegroups.com.
[qubes-users] Re: Maybe a silly question
I gave up on Virus scans a couple years ago. I turned into one of the grey bears that use to tell me in the late 90s they were useless... Actually revelations nowadays are that they are not just useless since they can't keep up with literally millions of viruses released every month, according to head of IAD for the NSA like 5 years ago... probably way more now. But the fact is they are more of a security risk then they are worth. There is a security researcher Tavis Ormandy? who has exposed kapersky and exploits Norton quite frequently. Norton once took one of my suggestion when they started their 2009 I think was the year, a symantec employee contacted me and I was psyched to see they included my suggestion. With a brand new revamped norton that was destroying everyone else with the lightest foot print. Then I caught them hiding processses in the kernel and their own program, which ahd a feature who listed which cpu use was from norton or other on system, was lying haha. And after like 2 or 3 years they were back to raping hdd's and using resources again. Rumours from the 90s about them making their own viruses to promote their own software has also been proven not too long ago. Especially related to Kapersky being caught as well. Some of them are so blatantly corrupt nowadays you know its them when they pop up on your windows machine out of nowhere lol...cough personal antivirus...cough.. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/62c555ef-bf67-4f4d-bc8d-d3694a021790%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[qubes-users] Re: Maybe a silly question
> As Qubes works by means of the principle of security by isolation and every > part of the hardware is running in a virtual machine. Does it make any sense > to use Kaspersky Security for virtualization over the xen hypervisor to > improve security and antihacker security? The KasperskyOS uses a hosted hypervisor (type-2 hypervisor). The KasperskyOS is based on a reliable proprietary microkernel. They use device emulation or where possible paravirtualization. KasperskyOS is able to use hardware virtualization extensions, but does not require them [1]. I assume they use an mixed approach of binary translation and kernel based virtualization. However, everything is proprietary. This is the reason what makes a technical and security comparison between KasperksyOS and QubesOS impossible. However, it is easy to argue why Xen is a good choice as hypervisor for security projects such as QubesOS: - Xen is open source, which means everybody can audit and anylze it - Xen is used by several large companies in their cloud data center (Amazon AWS, Netflix etc.) -> Industrial proven - Xen was developed and maintained for over a decade and has proven to be reasonable secure and flexible. - Xen itself has a very small code base, which means less code running higher privileged CPU modes (Intel VT + AMD-V ring -1, ARM "HYP" mode). > Is going KasperskyOS to suppose a big concurrency to Qubes? No, QubesOS has a very high security standard driven by excellent research from Invsible Things labs. Furthermore, QubesOS is open source, which means people can extend QubesOS for their own use cases. Larger community projects which extend QubesOS are Whonix, the Archlinux-Template, the Mirage-Firewall Unikernel. In addition there are a couple of smaller projects. By the way, KasperskyOS is not the only solution. Bromium vSentry for example is another endpoint virtualization solution. [1] https://os.kaspersky.com/wp-content/uploads/sites/11/2017/02/Kaspersky-Secure-Hypervisor-En.pdf -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/f798d2d8-6d04-4433-a4ce-0704b8e45b5e%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
